New Lock Aims To End Chip Piracy

Stony Stevenson writes "Pirated microchips based on stolen blueprints could soon be a thing of the past thanks to computer engineers at Rice University and the University of Michigan. The engineers have devised a way to head off this costly infringement by giving each chip its own unique lock and key. The patent holder would hold the keys, and the chip would securely communicate with the patent holder to unlock itself. The chip could operate only after being unlocked. The Ending Piracy of Integrated Circuits (Epic) technique relies on established cryptography methods, and introduces subtle changes into the chip design process without affecting performance or power consumption. With Epic protection enabled, each integrated circuit would be manufactured with a few extra switches that behave like a combination lock."

Physical DRM

[QMalcolm]

Great.

Re:Physical DRM

[burni]

Yep, "great"!

.. soon to be cracked, by a great army of brilliant chinese/taiwanese/etc.. engineers,
specialized in getting to know how everything works.

Just to remember, how long did it took to crack HD-DVD encryption ?
Not long enough to survive it's own extinction.

We all know the story's ending, it just happens too often.

Sure, great idea

[KublaiKhan]

Presuming that there's a constant internet connection, that the manufacturer's server is incapable of being cracked and maintains at least 5-9's uptime, and that anyone's stupid enough to buy a crippled chip with this on it.

Re:Sure, great idea

[bkaul01]

It doesn't sound like this is a consumer-level activation, but a one-time, manufacturer-side process:

To activate a chip, the manufacturer would plug it in and let it contact the patent owner over an ordinary phone line or internet connection. It's intended to protect against overseas subcontractors who have access to the blueprints making extras and then going and selling them on the black market, behind the patent-holder's back. So, the overseas company would make it, ship it back to the company who owns the rights to it, where it would be activated before being distributed. The outsourced manufacturing company wouldn't have the ability to activate them, so couldn't sell extras to the black market.

Re:Sure, great idea

[poetmatt]

That's how it starts, but that's not how it would end. Think of how much the government or any power abusing company seeking more of that would be on this like FOS. Especially if it becomes commonly manufactured. Not that this is 100%, but I wouldn't see a situation like this technology being force trickled on consumers to be completely unlikely either.

We've had it before, I believe it was called trusted computing. Boy do people love how that has turned out, if I recall correctly.

I understand that a processor blueprint is not something that people want compromised. Throwing a technical attempt to solve the problem rather than dealing with human error is just putting the blame in the wrong places and throwing stuff at the wall hoping things will stick.

Re:Sure, great idea

[poot_rootbeer]

The outsourced manufacturing company wouldn't have the ability to activate them, so couldn't sell extras to the black market.

However, since they have the blueprints to the chips, they can find the sections of the schematic that implement this activation system, create a slightly modified die where they're masked out to always return an "authorized" status, and sell THOSE pirate chips on the black market.

Re:Sure, great idea

[Chris+Burke]

in other words, like every existing anti piracy mechanism to date.

Yes, but it's actually even worse. Because with normal DRM, you're trying to keep the guy who is watching the DVD from being able to copy the DVD.

But in this case, it's actually like you're trying to keep the guy who is making the DVD from being able to copy it. They don't even have to break your DRM or work around it, they just have to decide not to build it in.

Re:Sure, great idea

[x_MeRLiN_x]

You seem to be missing the fact that the patent owner (who this is designed to protect) is a completely separate entity from the manufacturer. The manufacturer is nothing more than a subcontractor. The manufacturer obviously requires the blueprints to produce the chip. It is the manufacturer who is selling the patent owner's chips on the black market. Nothing is being "leaked". You can bet your life that the "signed agreements" you mention are without exception already in place. They're just being flouted.

Others who responded to my post have argued that you therefore shouldn't hire Chinese or other cheap chip production plants, because they are well known for failing to respect intellectual property and you have no possible recourse against them.

The thing is, businesses are always going to opt for the cheapest option. If this technological measure is cheaper than opting for a more expensive, "trustworthy" producer, then I don't think you have a case against it. This doesn't harm consumers in any way shape or form, simply because it doesn't involve them. The restrictions will have already been removed long before it reaches their hands.

Re:Sure, great idea

[insertwackynamehere]

Maybe the answer is to stop outsourcing.

Re:Sure, great idea

[asuffield]

For which you need people capable of doing that, who have to be paid. That might not cost as much as developing a new circuit from scratch altogether, but it _might_ be enough to make the pirating just not worth it.

Unlikely. The need to employ actual mechanics has never been a problem for people running chop shops.

Removing a generic feature from a chip design just isn't that hard. If you make it hard to remove, it won't be generic any more, and it will significantly add to the cost of developing each chip (already huge) - so nobody is going to do that.

Re:Sure, great idea

[droopycom]

Read the paper. http://www.cse.umich.edu/~imarkov/pubs/conf/date08-epic.pdf.

The chip generate a unique Private Key when first powering up. The matching Public Key is sent to the IP holder for activation. Supposedly there is no way to force a chip to generate a known private key without modifying the masks.

Modifying the mask (blueprint) using a "microscope" (or other techniques), is much more difficult that just putting the original mask in the machine and churning out a few thousands of chips.

Not a good idea

[mlts]

In a number of countries that this chip is aimed for, what will happen is that some knockoff fab will disassemble the chip, figure out the masks, and just make and sell the same IC minus the locking circuitry.

This type of locking mechanism also brings up other points. Once the IC is "unlocked", is it unlocked for good, or just for a time period? Could some criminal organization figure out the method of re-locking it, then lock the machines who belong to the patent holder's customers? This would result in some decent havoc especially in embedded circuitry (HVAC systems, railroad switches.)

The article seems to be lacking substance as well.

This targets gray market, not black

[smellsofbikes]

If I read the original article correctly:
If someone gets the chip design and is copying it to be built in another fab, it'd be possible (difficult, but much less difficult than a complete chip redesign or re-engineering) to remove this part of the chip (and increase the profit margin, since A: no investment on research and B: more die per unit silicon.)

What this is going to affect is people who run a fab making legitimate parts, but also run the same parts from the same masks but keep them off the books and sell them independently of the company that owns the design -- OEM ripoffs.

I don't get it

[Deathlizard]

If fabless companies are so worried about overseas manufacturing, then why not use a fab that is inside the country your company resides in? That way, you can sue the living hell out of them when they do sell / steal your plans.

I would think that building the Chips in the US or Europe where the fabs are more reputable would be a better cost effective solution than sending it to an orient fab and watch it pump out pirate chips left and right, or relying on some sort of activation scheme that these pirate hardware companies would most likely reverse engineer out of them anyway.

When it detects that it's a pirate copy, it says:

[spun]

EPIC FAIL!

Same Non-Problem, Same *WRONG* Solution

[ewhac]

Although the article doesn't expressly say so, I'm guessing chip "activation" occurs at the factory long before it's put in a tube and shipped to an OEM. So end-users will (probably) never see this.

As I see it, this has two major problems with it. The first, of course, is that copy protection in any form is childish, stupid, and ultimately ineffective.

The second is a bit more down to earth -- this will become the bottleneck on the manufacturing line. Chips are manufactured in the millions, with hundreds of thousands falling off the line each day. These nimrods propose to authenticate every last one of them, using computationally non-trivial crypto, uniquely before they roll off the line.

Let's generously assume it takes one second to authenticate and activate a chip (not, that's not a ridiculously long time -- between crypto compute time and network latency to the Pacific Rim, this is entirely realistic). This means you can activate a maximum of 86400 chips per day. Maybe you can parallelize the process, and maybe you can't (depends on whether the people who wrote the authentication server were idiots or not). And if your OC-3 to the Internet gets a backhoe through it, "accidentally" or otherwise, all production in your facility stops dead. Wonderful idea.

This stunning idea also seems to assume only one patent holder will be interested in a given chip. The most cursory inspection of even a "simple" memory chip will reveal several patent holders, all of whom will doubtless insist on "activation" which, again, may or may not be parallelizeable.

Like all copy protection "solutions" presented throughout history, this is a really, really stupid idea. I can't think of any fab that would willingly sign on to this.

Schwab

Think PHYs, not Pentiums

[Skirwan]

There was a time when half the USB flash media readers on the market were based on the same pirated designs -- at least according to hardware folks I used to work with who'd be in a better position to know than I am (or, most likely, you are). I'm fairly sure this is a bigger problem than many people realize.

Re:This is dumb. I can crack it in two seconds.

[DCBoland]

I know this is /. but I took the time to find the actual paper, they cover the typical attacks on the security mechanism quite thoroughly. Apparently its very difficult to scan a mask, especially at the small scales the industry deals in today - they suggest it would be cheaper to simply design the chip yourself.

(Off-topic: the anti-spam mechanism atm gives an interesting result for my email address..."'poo' in gap" oO)

Re:When it detects that it's a pirate copy, it say

[pitchpipe]

Not only EPIC FAIL, maybe we could have this chip report you to a patent offenders registry where all of the other chips that are using EPIC could deny your using them to prevent further patent abuse.

Hurries and puts bleeding child in car. Turns key...
"I'm sorry sir, your patent offenders registry status prevents you from starting this car."
But car, I need to get to the emerg... "I'm sorry sir, your patent offenders registry status prevents you from starting this car."
Oh fuck it!
Dials phone
"I'm sorry sir, your patent offenders registry status prevents you from dialing this phone. Please seek the assistance of a non-offender in...

Re:When it detects that it's a pirate copy, it say

[andy_t_roo]

atleast until the people with the hundred million$ plans, and the billion $ chip plant spend a few hundred thousand on analyzing the plans to find the few transistors that do this and take them out, making pre-unlocked chips. - if a bunch of random hackers can do over current DRM, there's not much chance that this would last.

Re:Chip Piracy, Eh?

[Mr+44]

This is about whether or not some large US corporation gets their cut of the profits. Nothing more. It should be no surprise that they behave the same way as the mafia.


You misspelled "makes back their R&D investment".

Chip piracy != music piracy

[FuzzyDaddy]

Chip piracy is a big problem.

My company got burned by it a few years ago. We had an 8 channel DAC (the MAX5308) in our design which didn't have a drop in replacement from another vendor. We needed some parts, and the lead times from Maxim were too long, so we contacted some distributors and found someone who had these parts.

We had a bunch of boards built, and we started getting a high failure rate, which we traced back to the DAC. A closer inspection of the part revealed it had a date code that was before the actual release date of the chip! We contacted Maxim and stopped payment on the parts. Maxim took some parts for evidence (and I believe sent us a few samples to tide us over).

We were building $14000 units that were being deployed in military communications systems.

It turns out the counterfeits were coming from Asia. The distributor in question probably knew that the chips were counterfeit and looked the other way.

Semiconductor companies put a lot of effort in making sure there products are reliable. (If a PC board has 100 parts, what failure rate is acceptable in your chips before you start to have very bad yield issues? What if it's 1000 parts?). We, as a society, have come to count on things being reliable, and real danger can result when their not. It's not as bad as counterfeit pharmaceuticals, but it's not so far off either.

I don't know if this scheme will work or not. But it's a real problem, with real consequences.