reverse engineering techniques in cmos based...

2

Agenda

Applications Requiring Standard CMOS NVM

Technology Comparison

• Floating Gates

• Antifuse / Oxide Rupture

Sample Preparation

Reverse Engineering Techniques

• Physical Inspection

• Electrical Inspection

Conclusions

3

Standard CMOS NVMMarkets & Applications

Wireless / RF

Uses

• Configuration settings

• EEPROM replacement

• Customer settings (i.e. volume)

Markets

• 802.11

• BlueTooth

• Zigbee

• GPS

• RFID

Analog

Uses

• Post package trim

• Fuse replacement

• In-field calibration

Markets

• Precision analog

(i.e. ADCs)

• Silicon Clocks

• MEMS pressure sensors

• Accelerometers /

gyroscopes

Markets

• Flash controllers

• Hard disk drives

• Home entertainment devices

(HDMI)

• Digital content devices

Security / Encryption

Uses

• Encryption keys

• Counters

Markets

• Power management

• Automotive

• Military

High Reliability

Uses

• Real time status and control

• Configuration settings

CMOS

NVM

© 2009 Virage Logic Corporation

http://images.google.com/imgres?imgurl=http://www.germes-online.com/direct/dbimage/50206611/Bluetooth_Headset.jpg&imgrefurl=http://www.germes-online.com/catalog/93/94/497/228223/sell_bluetooth_headset.html&h=360&w=360&sz=31&hl=en&start=1&sig2=ERMXp49plqMvfrSNsvRCtg&um=1&tbnid=B-YXutcfoY1nzM:&tbnh=121&tbnw=121&ei=hjl2SKeSEoPQpgTmo82KBA&prev=/images?q=bluetooth&um=1&hl=en&rlz=1G1GGLQ_ENUS275&sa=N

http://images.google.com/imgres?imgurl=http://www.adcomarketing.com/images/computer/wireless-mouse-kts6421.jpg&imgrefurl=http://www.adcomarketing.com/computers.htm&h=325&w=285&sz=12&hl=en&start=10&sig2=p19Yo6C0MNmaXuFVubihoA&um=1&tbnid=19_QHUnMknvddM:&tbnh=118&tbnw=103&ei=wTl2SMyICqSmpASMkuH8Aw&prev=/images?q=wireless+mouse&um=1&hl=en&rlz=1G1GGLQ_ENUS275

http://images.google.com/imgres?imgurl=http://www.smartphoneexperts.com/images/smartphones_front.jpg&imgrefurl=http://www.smartphoneexperts.com/&h=325&w=317&sz=30&hl=en&start=1&sig2=-HVJO2ges3XXKLBWc8Rmvw&um=1&tbnid=ZlFxz7207flG0M:&tbnh=118&tbnw=115&ei=kzp2SPWHEJq4pgSVpoTzAw&prev=/images?q=smartphone&um=1&hl=en&rlz=1G1GGLQ_ENUS275

http://images.google.com/imgres?imgurl=http://www.twisterstuntcars.com/rchelicopter/rchelicopter.jpg&imgrefurl=http://www.twisterstuntcars.com/rchelicopter/index.htm&h=325&w=300&sz=19&hl=en&start=3&sig2=L-ZX7aFD34kWV0u1Cvhf5Q&um=1&tbnid=mmkNKxLS4fplaM:&tbnh=118&tbnw=109&ei=fzt2SLGkBaeIpASWsNmIBA&prev=/images?q=remote+control+helicopter&um=1&hl=en&rlz=1G1GGLQ_ENUS275

http://images.google.com/imgres?imgurl=http://www.imagecows.com/uploads/_32ef-philips-hd-lcd-tv-1.jpg&imgrefurl=http://www.funponsel.com/blog/archives/2006/11/21/ehx-philips-introduces-1080p-lcd-tv/&h=400&w=400&sz=57&hl=en&start=9&sig2=-qZgwq0IoPhmK5Ll8X0uCw&um=1&tbnid=flih3yp5brCaTM:&tbnh=124&tbnw=124&ei=pil9SM3GC6fuigGS5pD0Ag&prev=/images?q=LCD+TV&um=1&hl=en&rlz=1G1GGLQ_ENUS275&sa=N

http://images.google.com/imgres?imgurl=http://digitalonline.com.au/images/STB500A-digital-set-top-box.jpg&imgrefurl=http://digitalonline.com.au/&h=306&w=320&sz=15&hl=en&start=1&sig2=ro2SND-jxiYQFBDfK_k6SA&um=1&tbnid=K5siU2ntTBAtNM:&tbnh=113&tbnw=118&ei=Lip9SPH-J5iuiAHGl4j1Ag&prev=/images?q=set+top+box&um=1&hl=en&rlz=1G1GGLQ_ENUS275

http://images.google.com/imgres?imgurl=http://www.joytech.net/images/products/109-controller-grip.jpg&imgrefurl=http://www.joytech.net/8/products/wii/12/109/Controller-Grip.htm&h=300&w=300&sz=9&hl=en&start=14&sig2=wqT4vLx2PTb3-DUU6u_wMg&um=1&tbnid=q_JbtHLPet75VM:&tbnh=116&tbnw=116&ei=_ip9SPPLOY_eigGHsoDqAg&prev=/images?q=wii+controller&um=1&hl=en&rlz=1G1GGLQ_ENUS275

http://images.google.com/imgres?imgurl=http://www.sciam.com/media/inline/13C30FE6-E5F1-7C48-769556A839F47249_1.jpg&imgrefurl=http://www.sciam.com/article.cfm?id=news-bytes-new-iphone&h=320&w=320&sz=30&hl=en&start=7&sig2=6YmgIY_AcVurhstocBeq2w&um=1&tbnid=LDd3f8oE04hD1M:&tbnh=118&tbnw=118&ei=Lyt9SK3yBaP-iQH-0KnuAg&prev=/images?q=iphone&um=1&hl=en&rlz=1G1GGLQ_ENUS275

4

Standard CMOS NVM Technology Comparison

Floating Gate

• Similar to Flash / EEPROM technology

• Charge added / subtracted using tunneling or injection

• Multiple time programmable capability

• Data is read based on Vt shift of device

Antifuse

• Also called oxide rupture

• Microscopic damage done to gate oxide due to overstress

• One time programmable only

• Data is read based on leakage of programmed vs. unprogrammed cells

Silicon Substrate

Gate Oxide (SiO2)

Polysilicon Gatee-

e- e-

e- e-

e-

e-

e-e-

e-

e-

Floating Gate Oxide Rupture

5

Reverse Engineering CMOS NVMSample Preparation

Both technologies target deprocessing down to the polysilicon layer for any electrical techniques

Floating gates

• No plasma etch steps allowed during reprocessing

– Any charged particles may disturb the state of the floating gate

• Only wet etch is allowed

• Deprocessing to the polysilicon exposes the charge storage layer

Antifuse

• Immune to most deprocessing techniques

– Data does not get compromised / disturbed easily

• Some techniques may require deprocessing all the way to the gate oxide layer

Floating Gate

ST

I

ST

I

ST

I

ST

I

Oxide Rupture

DeprocessingTarget

6

Reverse Engineering CMOS NVMPhysical Inspection

Standard physical inspection (cross section / top level) does not work for either technology

• Floating gates leave no physical imprint on the silicon

• Antifuse damage is too small / localized to be found effectively

Source: “Hardware Security Requirements for Embedded Encryption Key Storage” Kilopass Inc. Whitepaper

7

Reverse Engineering CMOS NVMPhysical Inspection

Antifuse effects may be made more visible through chemical enhancement

• Similar to FA techniques used to identify oxide defects (i.e. pinholes)

• Silicon selective etching will remove the polysilicon as well as expose where the silicon filament penetrated the gate oxide to create the leakage path

Source:

“Atomic Force Probe Analysis of Non-Visible Defects in Sub-100nm CMOS Technologies”, Randal Mulder, Sam

Subramian, Tony Chrastecky. Freescale Semiconductor, 32nd International Symposium on Testing and Failure Analysis

8

Reverse Engineering CMOS NVMElectrical Inspection of Floating Gates

Theoretically floating gate states can be identified with SEM or FIB based voltage contrast

• Voltage and spatial resolution are within current technology limits

The act of measuring disturbs the contents of the floating gate

• Bombarding the floating gate with charged particles can change the state

• Only 1 chance to extract the data

Silicon Substrate

Gate Oxide (SiO2)

Polysilicon Gatee-

e- e-

e- e-

e-

e-

e-e-

e-

e-

Floating Gate Oxide Rupture

Charged particles

from SEM / FIBMeasurable reflections /

interactions based on

floating gate charge

9

Reverse Engineering CMOS NVMElectrical Inspection of Antifuse Technology

Voltage contrast can be used to determine the contents of antifuse technology as well

• Charge the polysilicon and track how quickly the charge leaks off to determine which cells are programmed (leaky) and which are not

No disturb mechanism

• Repeat the measurements as many times as needed to get the right settings

Bright spot –

gate is

leaking

Dark spot –

gate is in-

tact

Source:

“FIB Assisted Localisation and Preparation of Gate Oxide Fails”, Dr. Rüdiger Rosenkranz, Infineon Technologies

10

Conclusions

Embedded NVM in standard CMOS processing is becoming mainstream for a variety of applications including security and encryption

• Provides cost and process availability advantages over traditional mask-adder technologies

Both floating gate and antifuse CMOS based NVM technologies are resistant to physical inspection based reverse engineering techniques

• Antifuse based NVM can be made more visible through selective etch techniques

Electrical inspection techniques are more effective on antifusetechnologies than floating gates

• Deprocessing and attempting to measure the contents of a floating gate NVM disturbs the memory contents

• Antifuse technology is not disturbed by either deprocessing or electrical measurement techniques

reverse engineering techniques in cmos based...

Documents