Jeremy Blackstone: Mountaineer, UCSD CSE PhD, and Howard Professor

Congratulations to Jeremy Blackstone for successfully defending his PhD thesis! Jeremy’s PhD research focused on mitigating hardware side channels – a powerful class of security vulnerabilities that exploits the side effects of physically performing a computation. Jeremy’s research focused on the idea of “blinking”, which determines when to turn on/off side channel attack mitigation strategies. The goal is to use the mitigations during the most important time periods and turn them off during less vulnerable times in order to make the system more efficient. This provides the ability to tradeoff between security, performance, power consumption, and other important objectives.

Jeremy has been associated with our research group for a long time. He was a member of our first Engineers for Exploration Summer REU program in Summer 2013 when he was an undergraduate at Howard University. The following summer, he came to UCSD again and this time working with Dustin Richmond on the Tinker project. He was funded to participate in the summer research programs as part of the UCSD Howard Partnership for Graduate Success — a UC HBCU-funded initiative led by Profs. Gentry Patrick in Biological Sciences and Gary Cottrell in Computer Science and Engineering. These two summer research experiences were the key factor in recruiting Jeremy to UCSD. Jeremy would have otherwise not been interested in UCSD without spending the summer in San Diego. And I would have not gotten to know Jeremy and would have been less likely to consider his application and give him an offer.

Jeremy started his his PhD in 2015. During our group retreat Fall 2015, we did a challenging group hike in Mammoth Lakes scrambling up boulders for hundreds of meters near the Crystal Crag. The group picture was taken at the top of that scramble. Jeremy was not an experienced hiker and I did a very poor job of warning him (and others in the group) about the challenges of the hike. It may be hard to tell, but Jeremy was not very happy in this picture (or generally during the hike). In a lot of ways this summarizes a PhD journey. You don’t really know what you are getting into, it is very difficult, sometimes your advisor fails to warn you of pending challenges, but when you make it, you have done things that have never been done before.

Jeremy eventually recovered from that hike, and settled in on hardware security as a PhD topic. He worked with many different people and different topics over his PhD career. His published extensively with people within our group (e.g., Wei Hu, Alric Althoff, Dustin Richmond), at the University of Washington (Michael Taylor, Dustin Richmond), and at Purdue (Shreyas Sen, Debayan Das). Jeremy is clearly a multidisciplinary and collaborative researcher.

After graduation, Jeremy started as an assistant professor in the Department of Electrical Engineering and Computer Science at Howard University. Jeremy was remotely lecturing at Howard during the final year of his PhD teaching an introduction to computer science course. The professor position allows him to continue his teaching and research pursuits at his alma mater.

Congrats again Jeremy! I look forward to seeing all the mountains that you climb.

Get CWE-IFT!

As part of an invited session “CAD for Hardware Security” at the IEEE VLSI Test Symposium (VTS), I teamed up with some giants in the hardware security space (Intel, University of Florida, and Tortuga Logic) to discuss the need for security automation tools to enable hardware security verification.

My portion of the presentation focused on the need for hardware security coverage metrics. We developed CWE-IFT that use information flow tracking (IFT) property templates based on common weakness enumerations (CWEs). This describes the current process of security verification followed at Tortuga and within our research group at UCSD.

When Rick tells you to get CWE-IFT, you better Get CWE-IFT!

And yes, CWE-IFT is pronounced “Schwifty” after the hilarious (but extremely childish and vulgar — viewer beware!) “Rick and Morty” song. This helps fulfill my childhood goals to incorporate cartoons into my job. See Mom, watching cartoons all day is a productive use of time! 🙂

To understand how to Get CWE-IFT, check out the slides and paper. I promise that they are a lot less childish and vulgar.

Paper: Sohrab Aftabjahani, Ryan Kastner, Mark Tehranipoor, Farimah Farahmandi, Jason Oberg, Anders Nordstrom, Nicole Fern, and Alric Althoff, “CAD for Hardware Security – Automation is Key to Adoption of Solutions”, IEEE VLSI Test Symposium 2021.

Slides: Ryan Kastner, Jason Oberg, Nicole Fern, and Alric Althoff, “Hardware Security Coverage“, IEEE VLSI Test Symposium 2021.

Tracking Iguanas with Drones Equipped with Software Defined Radios

Our scientific collaborators at the San Diego Zoo Wildlife Alliance have a long running research program studying the behaviors of endangered iguanas in the Caribbean. As part of their efforts to understand these animals, they attach tiny radios to the iguanas and attempt to track them over weeks to months. In the past, this has largely relied on humans equipped with directional antennas traversing rough terrain to find these radios and the iguanas attached to them.

Our Engineers for Exploration researchers felt we could do better. Over the years, we have developed a drone equipped with a software defined radio to fly over an area and find the animals. The software defined radio “listens” for the radios attached to the iguanas, and captures characteristics of each radio’s signal. We have developed automated algorithms that analyze the received data from the drone’s radio to provide an estimate about the location of the iguanas. The algorithm fuses together position estimates from different times and locations. Our field deployments over that past several years have shown that our drone-based system can effectively find radio-tagged animals.

This research was recently published in the Journal of Field Robotics. For more details, please see our paper below. Congrats to all the authors!

Nathan T. Hu, Eric K. Lo, Jen B. Moss, Glenn P. Gerber, Mark E. Welch, Ryan Kastner, and Curt Schurgers, “A More Precise Way to Localize Animals Using Drones“, Journal of Field Robotics, 2021 (pdf)

S2N2: A FPGA Accelerator for Streaming Spiking Neural Networks

Spiking Neural Networks (SNNs) utilize an event-based representation to perform more efficient computation than existing artificial neural networks. SNNs show a lot of promise for low energy computation, but are still limited by the lack of quality training tools and efficient hardware implementations.

Our recent work published at the ACM/IEEE International Symposium of Field-Programmable Gate Arrays (ISFPGA) extends the Xilinx FINN architecture to support streaming spiking neural networks (S2N2). S2N2 efficiently supports both axonal and synaptic delays for feedforward networks with interlayer connections. We show that because of the spikes’ binary nature, a binary tensor can be used for addressing the input events of a layer. We show that S2N2 works well for automatic modulation classification — an important problem for modern wireless networks.

The work was done in collaboration with Xilinx. For more details, check out Ali’s talk at ISFPGA

Paper Reference: Alireza Khodamoradi, Kristof Denolf, and Ryan Kastner, “S2N2: A FPGA Accelerator for Streaming Spiking Neural Network“, International Symposium on Field-Programmable Gate Arrays (ISFPGA) (pdf)

Two New(ish) Group Members

An extremely belated but enthusiastic welcome Olivia Weng and Jennifer Switzer — two PhD students that joined our group in Fall 2020.

Olivia Weng joins us from the University of Chicago where she got her BS in Computer Science. As an undergraduate, her research with Prof. Andrew Chien (formerly a UCSD professor) studied the use of machine learning techniques to optimize operating system requests.

Jennifer Switzer got an MEng and BS from MIT. Her Masters thesis looked at vulnerabilities that arise when “safe” processes written in Rust interact in potentially unsafe manners through inter-process communication.

Welcome Liv and Jen!

Distinguished Lecture & Tutorial on Property Driven Hardware Security

December 2020 involved a couple of major events related to our hardware security research — a HOST Tutorial and a CASA Distinguished Lecture. Ryan and Dr. Nicole Fern from Tortuga Logic gave a tutorial at IEEE International Symposium on Hardware Oriented Security and Trust (HOST) HOST 2020. Ryan was also invited to give a Distinguished Lecture in the CASA Cluster of Excellence at Ruhr University Bochum. Both events focused on our work on Property Driven Hardware Security.

Property driven hardware security is a design methodology to assess the safety and security of hardware designs. It enables security experts to describe how the hardware should (or should not) function. These security properties are formally specified using languages that map to models that are easy to verify using existing design tools. There are three fundamental elements for any hardware security design flow. First, security experts need expressive languages to specify these security properties. Second, these properties should map to models to describe the security related behavior of a hardware design. Finally, hardware security design tools verify that the hardware design meets these properties using formal solvers, simulation, and emulation.

The HOST tutorial was one of six selected to provide HOST attendees with an in-depth look at important topics in hardware security. I gave a similar tutorial in the last HOST that was well-received and invited back for another year. This time around, the tutorial included Dr. Nicole Fern from Tortuga Logic. Nicole provided a great presentation on the types of properties that modern hardware security verification tools can handle. I added an in-depth look about how these tools can verify security properties. Have a look yourself at the materials made available to the attendees if you would like.

The Distinguished Lecture was a great honor for me. I really admire the research done in CASA Cluster of Excellence — they have an outstanding group of researchers that I have followed for many years (even decades). This invitation did lead me to consider what one needs to do in order to be eligible to give a distinguished lecture. My conclusion is that one mostly just needs to be a researcher for a long enough time and then their work becomes distinguished. And that made me feel a bit old. So before my talk I made sure to shave and pluck out grey hairs. The folks at CASA did a nice job of producing a video of the talk:

X-Ray Vision: Enhancing Liver Surgery with Augmented Reality

Liver cancer has the fastest growth of incidence and the second highest mortality of all cancers in the United States. Worldwide, it is estimated that over one million people will die from liver cancer in 2030. Liver resection (hepatectomy) is the paradigm for treating liver cancer. A crucial part of a partial hepatectomy is understanding where the tumors, vessels, and other important landmarks are located. To aid in this, the patient typically undergoes preoperative cross-sectional imaging (e.g., CT/MR scans). Surgeons use these images to determine resectability based upon the location of important structures (e.g., veins), analyze tumor margins, accurately compute future liver remnant volumes, and generally aid in surgical planning and navigation.

An augmented reality image guidance system for enhancing liver surgery.

However, it is challenging for the surgeon to mentally register preoperative cross-sectional images to the surface of the liver at the time of operation since surgical actions cause significant and sometimes permanent liver deformations that lead to mismatches with cross-sectional images. Mentally integrating preoperative data into the operative field is time consuming and error prone. This can make it difficult to accurately localize smaller tumors intra-operatively, which can affect surgical decision making and adequate resection of primary and metastatic liver tumors.

Dr. Michael Barrow‘s PhD thesis developed augmented Reality (AR) image guidance techniques that merge preoperative data directly into the surgeons view during surgery. The goal is to provide surgeons with what Michael describes as “X-ray vision” — allowing them to see through tissues and better understand where blood vessels, tumors, and other important surgical landmarks lie.

Current scenario: The surgeon has to estimate internal vessel positions
X-Ray vision: the surgeon is presented an AR overlay of internal landmarks.

The research brings together many state-of-the-art technologies. It requires computer vision approaches to track the surgical scene, real-time mechanical modeling of the organ to accurately place the important unseen surgical landmarks, augmented reality to visualize the landmarks, and hardware accelerated compute systems to process the high throughput sensor data. He showed that patient specific biomechanical modeling results in clinically significant increases in accuracy. Specifically, he built a system that uses magnetic resonance elastography to create a patient-specific mechanical model. The system works in real-time to provide accurate positions of unknown landmarks. He physically validated the techniques by creating a phantom mechanical platform to demonstrate it is possible to track landmarks internal to the phantom liver.

Left: Overview of the complete AR surgical system. Right: Experimental platform used to validate the AR accuracy

Michael took an unconventional path to his PhD. Unlike most PhDs, he laid out his research topic almost solely on his own. He spent a lot of time shadowing medical doctors to understand their problems. He deftly maneuvered through many different fields, seeking out and finding key collaborators. The result is an amazing example of an interdisciplinary thesis that has tremendous potential value in a clinical setting.

Michael developed a number of other technologies that are not reflected in his thesis. Most recently he is focusing on developing technologies to help into COVID-19 crisis which was awarded an UCSD Institute of Engineering in Medicine Galvanizing Engineering in Medicine award. He lead a team of undergraduates to build systems to better scale the care of COVID-19 patients (for more information see CSE Research Highlight).

Michael was a real tour de force in pushing collaborations between the School of Engineering and the School of Medicine. In addition to his Phd thesis project, he developed a close collaboration with Dr. Shanglei Liu and made many other connections between our research group and the medical school that will certainly create more future fruitful collaborations.

After graduation, Michael started a post-doctoral position at Lawrence Livermore National Labs.

Sketching Secure Hardware

Hardware security-related attacks are growing in number and their severity. Spectre, Meltdown, Foreshadow, Fallout, ZombieLoad, and Starbleed are just a few of the many recent attacks that exploit hardware vulnerabilities. While vulnerabilities are seemingly easy to find, designing secure hardware is challenging (to say the least) and there are limited tools to aid this process.

Armita Ardeshiricham’s PhD thesis made pioneering and fundamental contributions in detecting, localizing, and repairing hardware vulnerabilities. Her thesis developed verification tools that quickly finds vulnerabilities that previous work could not. And it laid the foundation for automated debugging of those flaws.

Her early work focused on developing powerful information flow tracking (IFT) tools that that work at the register transfer level. She extended this work in a fundamentally important manner by formulating IFT logic that detects timing based flows. And she pioneered the idea of sketching for hardware security. The culmination of her PhD research is the VeriSketch framework.

VeriSketch is the first design framework that uses sketching to automatically synthesize secure and functionally-complete hardware design. VeriSketch frees hardware designers from specifying exact cycle-by-cycle behaviors and excruciating bit-level details that often lead to security vulnerabilities. Instead, the designer provides a sketch of the circuit alongside a set of functional and security properties. VeriSketch uses program synthesis techniques to automatically generate a fully-specified design which satisfies these properties. VeriSketch leverages hardware IFT to enable definition and verification of security specifications, which allows for the analysis of a wide variety of security properties related to confidentiality, integrity, and availability.

Armita’s PhD research will undoubtedly have a lasting impact on our group’s hardware security efforts and has laid out a research agenda for the next few years (and likely beyond). Based on her work, we have started projects on error localization (with Prof. Yanjing Li at Univ. of Chicago) and automated property generation (with Prof. Cynthia Sturton at Univ. of North Carolina) that was recently funded by the Semiconductor Research Corporation. Her work was fundamental in developing system on chip access control monitors in collaboration with Leidos and Sant’Anna School of Advanced Studies in Pisa. She will certainly be missed!

Dr. Ardeshiricham currently works at Apple doing things that she can tell no one about (as is typically with Apple). But I’m certain that future Apple devices will be much more secure with her overseeing the verification process.

A very long overdue post and congrats again!

-Ryan

Ryan’s acknowledgment — acting as Mel Gibson to Armita’s Jim Caviezel during her PhD career.

Holistic Power Side Channel Leakage Assessment

It is surprisingly easy to extract critical information from a computer chip by simply monitoring the amount of power that it consumes over time. These power side channels have been used time and time again to break otherwise secure cryptographic algorithms. Countless mitigation strategies have been used to thwart these attacks. Their effectiveness is difficult to measure since vulnerability metrics do not adequately consider leakage in a comprehensive manner. In particular, metrics typically focus on single instances in time, i.e., specific attack points, which severely underestimate information leakage especially when considering emerging attacks that target multiple places in the power consumption trace.

We developed a multidimensional metric that addresses these flaws and enables hardware designers to quickly and more effectively understand how the hardware that they develop is resistant to power side channel attacks. Our metric considers all points in time of the power trace, without assuming an underlying model of computation or leakage. This will enable the development of more secure hardware that is resilient to power side channel attacks. This work was recently published at the International Conference on Computer Aided Design (ICCAD), one of the premier forums for technical innovations in electronic design automation.

For further information see: Alric Althoff, Jeremy Blackstone, and Ryan Kastner, “Holistic Power Side-Channel Leakage Assessment: Towards a Robust Multidimensional Metric“,  International Conference on Computer Aided Design (ICCAD), November 2019 (pdf)

Documenting Maya Archaeological Sites with Low-cost 3D Imaging Sensors

Deep in the heart of the Peten Basin in Eastern Guatemala lies the ruins of the ancient Maya civilization. Jungles have overtaken these ancient cities, leaving archaeologists to painstakingly excavate their ruins in order to uncover their secrets about their culture, traditions, and rituals. This process is time-consuming and tedious; archaeologists carefully tunnel into the temples and other structures using pickaxes and shovels. They manually sift through the limestone remains in hopes of finding artifacts, tombs, ancient walls, masks, and murals and better understand the usage of these structures and artifacts. The result of this is hundreds of meters of man made tunnels that burrow deep into these structures and snake across multiple levels.

Dr. Quentin Gautier successfully defended his PhD thesis which focused on using modern technologies to better document these archaeological sites. His thesis documents is a series of 3D imaging prototypes, which can generate large-scale 3D models of Maya archaeological sites. Over the years, Quentin lead the development of several generations of scanning systems and he ventured on several expeditions deep in the the Guatemala jungle to deploy these systems. The result is an unprecedented amount of data collection, which has turned into impressive 3D models that are viewable in virtual reality and other 3D visualization systems.

Quentin’s PhD journey was much like these excavations. It was at times painstaking and tedious. He is an expert system builder and this often conflicted with the unfortunate publish-or-perish model of academics. He certainly could have focused on writing more papers on incremental ideas in lieu of developing real systems that were field tested and deployed. In the end, I believe his thesis will be more impactful than these unwritten papers. The excavation sites that he helped document are windows into our past, and many of these windows have been closed as the excavations have been backfilled in order to preserve these precious sites. Quentin’s digital models will allow archaeologists and others all over the world to view these cultural heritage treasures. His system development will help our research group’s continued efforts to use modern technologies to aid in scientific purposes. And his mentorship to the countless undergraduate students (like Giovanni below) will have lasting impacts on their careers.

Congratulations Dr. Gautier and best of luck in Japan! I look forward to seeing all of the amazing systems that you develop in the future.