Hardware Security for and beyond CMOS Technology: An Overview on
  Fundamentals, Applications, and Challenges by Knechtel, Johann
Hardware Security for and beyond CMOS Technology
An Overview on Fundamentals, Applications, and Challenges
Johann Knechtel∗
Division of Engineering, New York University Abu Dhabi, United Arab Emirates
johann@nyu.edu
ABSTRACT
As with most aspects of electronic systems and integrated circuits,
hardware security has traditionally evolved around the dominant
CMOS technology. However, with the rise of various emerging
technologies, whose main purpose is to overcome the fundamental
limitations for scaling and power consumption of CMOS technology,
unique opportunities arise also to advance the notion of hardware
security. In this paper, I first provide an overview on hardware
security in general. Next, I review selected emerging technologies,
namely (i) spintronics, (ii) memristors, (iii) carbon nanotubes and
related transistors, (iv) nanowires and related transistors, and (v) 3D
and 2.5D integration. I then discuss their application to advance
hardware security and also outline related challenges.
CCS CONCEPTS
• Security and privacy → Security in hardware; • Hardware
→ Emerging technologies.
KEYWORDS
Hardware Security; Spintronics; Memristors; Carbon Nanotubes
(CNTs) Transistors; Nanowire Transistors; 3D Integration; 2.5D
Integration; Randomness; Variability; Polymorphic Behavior; Re-
configurability; Reverse Engineering; Tampering; Counterfeiting;
Theft of Intellectual Property; Hardware Trojans; Physical Read-
Out Attacks; ProbingAttacks; Side-Channel Attacks; Fault-Injection
Attacks; Data Security; Physically-Unclonable Functions (PUFs);
True Random Number Generators (TRNGs); Logic Locking; Split
Manufacturing; Camouflaging; Masking; Monitoring; Root of Trust
ACM Reference Format:
Johann Knechtel. 2020. Hardware Security for and beyond CMOS Tech-
nology: An Overview on Fundamentals, Applications, and Challenges. In
Proceedings of the 2020 International Symposium on Physical Design (ISPD ’20),
March 29-April 1, 2020, Taipei, Taiwan. ACM, New York, NY, USA, 12 pages.
https://doi.org/10.1145/3372780.3378175
1 INTRODUCTION
In our modern age of omnipresent and highly interconnected infor-
mation technology, (cyber)security becomes ever more challenged.
Among many other prominent incidents, e.g., in April 2019, more
∗This work was supported in part by NYUAD REF under Grant RE218 and by the joint
NYU/NYUAD Center for Cybersecurity (CCS).
ISPD ’20, March 29-April 1, 2020, Taipei, Taiwan
© 2020 Association for Computing Machinery.
This is the author’s version of the work. It is posted here for your personal use. Not
for redistribution. The definitive Version of Record was published in Proceedings of
the 2020 International Symposium on Physical Design (ISPD ’20), March 29-April 1, 2020,
Taipei, Taiwan, https://doi.org/10.1145/3372780.3378175.
than 885 million records from First American Corporation, includ-
ing bank account details, Social Security digits, etc., were leaked
publicly on the internet [1]. Within the realm of cybersecurity in
general, hardware security in particular is concerned about achiev-
ing security and trust directly within the underlying electronics.
Therefore, hardware security seeks to build up, e.g., so-called root
of trust (RoT) schemes for isolation and attestation of computa-
tion [2–4], or other hardware primitives and protection schemes.
As with most aspects of modern electronic systems and inte-
grated circuits (ICs), hardware security has traditionally evolved
around the dominant complementary metal-oxide-semiconductor
(CMOS) technology. However, with the rise of various emerging
technologies, whose main purpose is to overcome the fundamental
limitations for scaling and power consumption of CMOS technology,
unique opportunities arise also to advance the notion of hardware
security. For example, the use of memristive technology is promis-
ing for the secure management of secret keys [5], which is rather
challenging for CMOS memory technologies.
In this paper, I review initially the fundamentals of hardware se-
curity and prior art for CMOS technology, for both the key domains
of (i) data security at runtime and (ii) confidentiality and integrity of
hardware itself (Sec. 2). Then, I cover the fundamentals of selected,
prominent emerging technologies, namely (i) spintronics, (ii) mem-
ristors, (iii) carbon nanotubes and related transistors, (iv) nanowires
and related transistors, and (v) 3D and 2.5D integration (Sec. 3).
Based on this review, promising matches of emerging technologies
and their properties toward the needs for hardware security are
revealed (Sec. 4). Selected researched and (at least partially) demon-
strated security schemes which are based on emerging technologies
are also discussed in Sec. 4. In Sec. 5, I uncover challenges—and
resulting chances—for future advancements, essentially advocat-
ing for further interdisciplinary efforts, where the physical design
community would want to become more involved as well. Finally, I
conclude in Sec. 6.
2 FUNDAMENTALS OF HARDWARE
SECURITY AND PRIOR ART FOR CMOS
Here, I review the fundamentals and prior art of hardware security
in general.While it should be understood that this paper can provide
only an overview on this vast and fast-growing field, I strive to
cover the most important aspects and seminal protection schemes.
2.1 Data Security at Runtime
The confidentiality, integrity, and available of data processingwithin
electronics is subject to various threat scenarios, like unauthorized
access or modification of data, side-channel and fault-injection at-
tacks, and physical read-out and probing attacks. Next, I provide
an overview on these threats and related countermeasures.
ar
X
iv
:2
00
1.
08
78
0v
3 
 [c
s.C
R]
  2
9 J
an
 20
20
2.1.1 Unauthorized Access or Modification of Data. Such “bread-
and-butter” attacks are conducted mainly at the software level.
Cryptography represents the most commonly applied protection
scheme, while many hardware security features have been proposed
and implemented as well, e.g., RoT architectures [2–4] or hardware
crypto modules [6] and true random number generators (TRNGs)
to support the latter. However, if not designed and implemented
carefully, such security features become prone to hardware-centric
attacks, e.g., see [7–11]; such attacks are discussed below.
2.1.2 Side-Channel and Fault-Injection Attacks. Side-channel at-
tacks infer information from physical channels which are leaky due
to sensitivities of electronics [12]. For example, it is well-known that
the advanced encryption standard (AES) is vulnerable to power
side-channel attacks when the hardware implementation is un-
protected [7, 10]. For another example, modern processors leak
information through caches and other buffers, related to timing
behaviour, speculative execution, et cetera [13–15].
Most countermeasures apply some kind of “hiding” or masking,
i.e., diffusion of the information leaked through side-channels, by
various means taken from the system level [16] down to gates [17].
Fault-injection attacks induce faults to aid deducing sensitive
information. Therefore, fault injection can also support or advance
side-channels attacks. Fault-injection attacks cover direct, invasive
fault injection, e.g., by laser light [18] or electromagnetic waves
[8, 11], as well as indirect fault injection, e.g., by repetitive writing
to particular memory locations [19] or by deliberate “misuse” of
dynamic voltage and frequency scaling (DVFS) features [9].
Countermeasures include detection of faults at runtime, e.g., see
[20], and hardening against fault injection at design and manu-
facturing time, e.g., see [21, 22]. Note that distinguishing between
natural and malicious faults is non-trivial [23], which imposes prac-
tical challenges for recovery at runtime.
2.1.3 Physical Read-Out and Probing Attacks. An adversary with
access to equipment used traditionally for failure analysis or in-
spection, like electro-optical probing or focused-ion beam milling
tools [24], can mount quite powerful read-out attacks. Among oth-
ers, these attacks are: probing of transistors andwires [25, 26], either
through the metal layers or the substrate backside; monitoring of
the photon emission induced by CMOS transistor switching [27];
or monitoring of electrical charges in memories [28].
Countermeasures seek to prevent and/or detect the physical
access. Solutions include, e.g., shielding structures in the BEOL [29–
31], deflection or scrambling structures in the substrate [32], and
detector circuitry [33]. Earlier studies such as [34] also considered
formally secure techniques. However, such schemes are subject to
limitations assumed for the attackers, which can become obsolete
and would then render the formal guarantees void.
2.2 Confidentiality and Integrity of Hardware
Besides the severe threats on data security at runtime, as outlined
above, other threats such as reverse engineering (RE), piracy of chip-
design intellectual property (IP), illegal overproduction, counterfeit-
ing, or insertion of hardware Trojans represent further challenges
for hardware security. These threats arise mainly due to the global-
ized and distributed nature of modern supply chains for electronics,
which span across many entities and countries nowadays [35].
A multitude of protection schemes have been proposed, which
can be broadly classified into IP protection, Trojan defense, and
physically-unclonable functions (PUFs). All these schemes seek
to protect the hardware from different attackers, which include
untrusted foundries, untrusted testing facilities, untrusted end-
users, or a combination thereof. Next, I provide an overview on
these schemes; more details can also be found in, e.g., [35, 36].
2.2.1 IP Protection. This subject can be further classified, namely
into logic locking, camouflaging, and split manufacturing. Camou-
flaging and split manufacturing alter the manufacturing process
to protect against malicious end-users and untrusted foundries,
respectively, whereas logic locking works at the design level and
seeks to protect against both, the foundries and the end-users.
Logic locking protects the IP by inserting dedicated locks, which
are operated by a secret key [37]. Without the secret key, logic
locking ensures that the details of the design IP cannot be fully
recovered and the IC remains non-functional. The locks are com-
monly realized by additional logic, e.g., XOR/XNOR gates. Only
after manufacturing (preferably even only after testing [38]) is the
IC to be activated, namely by loading the secret key into a dedicated,
tamper-proof on-chip memory. The realization of such memories
remains under research and development, e.g., see [39]—this fact
represents an obstacle towards wider application of logic locking.
Early works on logic locking considered various heuristics for
insertion of locks [40, 41]. Upon the dissemination of a power-
ful oracle-guided,1 Boolean satisfiability (SAT)-based attack [42],
however, the community had to develop more resilient techniques
as in [43, 44] and others. In turn, these more resilient techniques
stimulated the further development of other attacks, e.g., [45, 46],
some tackling directly the locked netlist itself, without requiring
an oracle, e.g., [47–49].
Camouflaging serves to mitigate RE attacks conducted by mali-
cious end-users. Thus, camouflaging means to alter the layout-level
appearance of an IC in order to protect the design IP. This can be
achieved by dedicated front-end-of-line (FEOL) processing steps,
like manipulation of dopant regions, gate structures, and/or gate
contacts [50–52], but also by obfuscation of the back-end-of-line
(BEOL) interconnects [53]. Camouflaging has been made available
for commercial application, e.g., see the SypherMedia Library [54].
Note that obfuscation is also known in the context of design-time
protection, e.g., by obfuscating finite state machines [55]—such
techniques are orthogonal to camouflaging.
As with logic locking, camouflaging is prone to analytical at-
tacks [50, 56]. In addition, camouflaging may be undermined by
physical read-out and probing attacks outlined above.
Split manufacturing seeks to protect the design IP from untrust-
worthy foundries [57–61]. As indicated by the term, the idea is to
split up the manufacturing flow, most commonly into an untrusted
FEOL process and a subsequent, trusted BEOL process. Note that
split manufacturing has been demonstrated successfully; [62] de-
scribes promising results for a 130nm process split between IBM
1That is, a functional IC is required to obtain valid I/O observations.
and GlobalFoundries, and [61] reports on a 28nm split process run
by Samsung across Austin and South Korea.
For the FEOL facility, a split layout appears as a “sea of gates,”
making it difficult for related adversaries to infer the entire netlist
and its design IP. Still, given that regular, security-agnostic design
tools work holistically on both the FEOL and BEOL, hints on the
omitted wiring can well remain in the FEOL [63, 64].
2.2.2 Trojan Defense. The notion of Trojans is wide-ranging and
requires multiple dimensions for classification [65]—it relates to
malicious hardware modifications that are (i) working at the sys-
tem level, register-transfer level (RTL), gate/transistor level, or the
physical level; (ii) seeking to leak information from an IC, reduce
the IC’s performance, or disrupt an IC’s working altogether; (iii) are
always on, triggered internally, or triggered externally; etc. Trojans
are likely introduced by untrustworthy third-party IP, adversarial
designers, or through “hacking” of design tools [66], or, arguably
even more likely, during distribution and deployment of ICs [67].2
Defense schemes can be classified into (i) Trojan detection dur-
ing design and manufacturing time and (ii) Trojan mitigation at
runtime. The former relies on testing, verification, et cetera [68–
75], whereas the latter relies on dedicated security features for
testability and self-authentication [76], monitoring and detection
of malicious activities [77–81], etc. Besides, logic locking and split
manufacturing can hinder Trojan insertion at manufacturing time,
at least to some degree. That is because an adversary without full
understanding of the layout and its IP cannot easily insert some
specific, targeted Trojans [82].
2.2.3 Physically-Unclonable Functions (PUFs). When applied some
input stimulus, a PUF should provide a fully de-correlated output
response. This response should be reproducible for the very same
PUF, even under varying environmental conditions, but it must
differ across different PUF instances, even for the same PUF design.
PUFs are used for (i) “fingerprinting” or authentication of hardware
or (ii) challenge-response-based security schemes [83–85]. Desired
properties for PUFs are uniqueness, unclonability, unpredictability,
reproducibility, and tamper resilience.
Electronic PUFs represent the dominant class of PUFs, with promi-
nent types of electronic PUFs using ring oscillators, arbiters, bistable
rings, and memories [83–86]. The core principle for such PUFs
is to leverage the process variations inherent to (CMOS) fabrica-
tion, through various dedicated circuitry. However, the resulting
randomness is limited for most PUF implementations; it may be
machine-learned and, thus, cloned [85–88].
Optical PUFs represent another interesting class [84, 89–93]. Here
the idea is to manufacture an “optical token” which, in addition to
structural variations inherently present in selected optical media,
may contain randomly included materials, e.g., nanoparticles. De-
pending on the materials used for the token and the inclusions as
well as the design of the token itself, these phenomena can be highly
chaotic and nonlinear by nature [92, 93]. Hence, optical PUFs are
considered more powerful than electronic PUFs.
2Although it has been projected traditionally as the main scenario, I argue that the
likelihood of Trojans being introduced at fabrication time is rather low. That is be-
cause any such endeavour, once detected, would fatally disrupt the business of the
affected foundry. Therefore, foundries can be expected to employ all technical and
organizational means available to them to hinder modifications by malign employees.
3 FUNDAMENTALS OF SELECTED
EMERGING TECHNOLOGIES
It should be understood that I can provide only an overview on se-
lected emerging technologies; there are further interesting technolo-
gies, like negative capacitance field-effect transistors (NCFETs) [94]
or photonics [95, 96]. Aside from 3D and 2.5D integration, note that
all selected technologies are realized at the device level; therefore,
these technologies can also be referred to as emerging devices.
The selected technologies are all compatible with CMOS manu-
facturing, at least to some degree. Thus, these technologies appear
promising and practical for the near future, as they can also realize
some hybrid CMOS-emerging electronics. In general, emerging
technologies seek to overcome fundamental limitations for CMOS
regarding scalability and power consumption, among other aspects.
In practice, various technologies are also applied in conjunction,
e.g., the N3XT approach by Stanford University and others leverages
carbon nanotubes and spintronics within 3D ICs [97].
3.1 Emerging Devices
3.1.1 Spintronics. Also known as spin electronics, spintronics dif-
fer from CMOS technology in various aspects [98–103]. First and
foremost, in addition to an electronic charge, the spin of electrons
is leveraged for both computation and storage/memory. Second,
the switching process is non-volatile, magnetoelectric, and subject
to other related phenomena like spin-transfer torque (STT). Third,
spintronics are implemented typically as stack of heavy metals, fer-
romagnets, and/or oxide structures [98–103], but the use of other
materials has been proposed as well, e.g., graphene [104], super-
conducting materials [105], or even organic materials [106]. Still,
manufacturing of spintronics can be made compatible with CMOS
processing [99, 101]. Fourth, in comparison to CMOS, spintronic
devices can offer lower power consumption, built-in memory func-
tionality, built-in reconfigurability, and better scalability [99–102].
Spintronics have been studied in detail for memory [101, 102,
107] and/or logic [98–103, 108] applications. For example, efforts
led jointly by Intel, UC Berkeley, and Berkeley Lab promote a type of
magnetoelectric spin-orbit logic that has superior switching energy
(by a factor of 10 to 30), lower switching voltage (by a factor of 5),
and enhanced logic density (by a factor of 5) when compared to
CMOS. Among other applications, reconfigurable logic, probabilis-
tic computing, and in-memory computing are good matches for
spintronics [101, 108, 109].
3.1.2 Memristors. The memristor, short for memory resistor, repre-
sents another fundamental circuit element besides the well-known
resistor, capacitor, and inductor elements; its theory was studied
already in 1971 [110]. Memristors retain an internal resistive state
according to the history of voltage or current applied. Another
interesting characteristic for some but not all memristors is a non-
linear response, resulting in “pinched hysteresis loops.” That is,
such memristors exhibit a current/voltage threshold, with their
internal state only being switched when this threshold is exceeded.
The implementation of memristor devices remains under re-
search and development, considering various materials and ar-
rangements like titanium dioxide [111], spintronics [112], or carbon
nanotubes [113], with most approaches remaining compatible with
CMOS fabrication. Memristive systems in the broader sense, like
resistive random-access memories (ReRAMs) or even phase-change
memories (PCMs),3 are progressing towards commercial applica-
tion [118, 119]. Aside from memory, memristors are also interesting
for in-memory computing, neuromorphic computing, and reconfig-
urable logic [115, 120, 121].
3.1.3 CarbonNanotubes and Transistors. Carbon nanotubes (CNTs)
comprise one or more rolled-up layers of graphene, the planar ar-
rangement of single-layer carbon atoms in 2D honeycomb-like
structures. In other words, CNTs form cylindrical structures with
single or multiple “walls” made of carbon sheets. CNTs are typi-
cally few nanometers in diameter and few micrometers in length.
CNTs can be either metallic conductors or semiconductors, depend-
ing on their structure. CNTs exhibit outstanding electrical, phys-
ical, and thermal properties [122–124], mainly due to the strong
bonds between their carbon atoms. For example, individual metallic
CNTs can, in principle, hold current densities more than 1,000 times
greater than copper, which is also promising to mitigate electromi-
gration [124]. In practice, however, CNTs have to form interfaces
with each other and with other materials [122, 123, 125, 126], push-
ing such gains somewhat out of reach. Still, one can also build up
composite structures to tune CNT properties as needed, e.g., using
copper to adapt the thermal expansion coefficient of CNTs toward
that of silicon [127].
CNTs have been studied extensively for interconnects, e.g., see
[122, 123, 126], as well as for transistors, e.g., see [97, 125, 128, 129].
In essence, carbon nanotube field-effect transistors (CNTFETs or
CNFETs) leverage multiple CNTs as transistor channels, which can
be realized in different arrangements, e.g., as gate-all-around struc-
ture [130]. CNTFETs are subject to the imperfection and variability
of CNTmanufacturing. However, these limitations can be addressed
by device and chip-design methodologies [131]—chip-scale applica-
tion of CNTFETs has been demonstrated successfully [128, 129].
3.1.4 Nanowires and Transistors. Nanowire FETs (NWFETs) lever-
age nano-scaled and semiconductive wires as transistor channel.
Various types of NWFETs have been studied, e.g., using silicon [132],
indium arsenide [133], germanium, or even polymers [134] for
materials; homogeneous or heterogeneous wire structures [135];
gate-all-around [136] or vertical gate structures [133]; et cetera—an
overview can also be found in [135]. Conceptionally, NWFETs are
somewhat similar to CNTFETs, but NWFETs allow for finer control
of desired properties during manufacturing (albeit challenges for
chip-scale manufacturing are there as well [135]), whereas CNT-
FETs offer better performance [137]. Besides, NWFETs are some-
what similar to nanosheet transistors, which are progressing already
towards commercial application [138].
Nanowire transistors have been proposed for sensing applica-
tions [139], flexible electronics [135], and reconfigurable logic [132],
among other applications. For [132], an additional program gate
enables to switch the transistor between n-channel and p-channel
behavior, by selectively suppressing the injection of one type of
charge carriers (e.g., electrons), while the other type (e.g., holes) is
modulated via the control gate.
3While some argue that such related technologies should be considered as memristive
ones as well [114, 115], others argue against that and for a more strict interpretation
of memristive properties in general [116, 117].
3.2 3D and 2.5D Integration
Aside from the emerging devices outlined above, 3D and 2.5D in-
tegration targets at the system level. That is, these technologies
embrace notions of “building skyscrapers” or “city clusters” of elec-
tronics [140–143]. Two factors drive these technologies: for one,
that is the CMOS scalability bottleneck, which becomes more exac-
erbated for advanced nodes by issues like routability, pitch scaling,
and process variations, for another, that is the need to advance
heterogeneous and system-level integration. Both drivers are also
known as “More Moore” and “More than Moore,” respectively.
3D integration means to vertically stack and interconnect mul-
tiple chips or active layers. This approach can be classified by the
underlying technology, with the main ones being (i) through-silicon
via (TSV)-based 3D ICs, (ii) face-to-face (F2F) 3D ICs, and (iii) mono-
lithic 3D (M3D) ICs [140]. Various studies, prototypes, and commer-
cial products have shown that such 3D ICs offer significant benefits
over 2D ICs, e.g., see [143–146].
2.5D integration, otherwise known as interposer technology, facil-
itates system-level integration of 2D/3D ICs in side-by-side fashion.
That is, an interposer serves as integration carrier, accommodates
some system-level interconnect fabric, and may even contain active
components [147–153]. Building advanced electronic systems in
the form of 2.5D ICs is considered less complex than 3D integra-
tion [147, 150, 153]. That is also because interposers are typically
implemented using mature technology nodes, for cost savings and
yield management. Finally, 2.5D ICs are already well-established in
the market, e.g., see [146, 154].
4 EMERGING TECHNOLOGIES FOR
HARDWARE SECURITY
Various emerging technologies offer the potential to advance the
notion of hardware security. In Fig. 1, I outline the selected emerging
technologies covered in this paper, their properties relevant and
beneficial for hardware security, the security schemes which are
supported accordingly, and the security threats countered by such
schemes. While this illustration is certainly not an overarching one,
it does consider all the aspects introduced in this paper.
4.1 Emerging Devices
The reviewed emerging devices have some interesting proper-
ties in common, which are more difficult to achieve in traditional
CMOS technology. More specifically, spintronics, memristors, CNT-
FETs, and NWFETs can all be tailored to comprise significant vari-
ability/randomness, reconfigurability or polymorphic behavior, re-
silience against reverse engineering, and possibly also for separa-
tion of trusted and untrusted parts (the latter by means of split
manufacturing). Therefore, these devices can serve well for PUFs,
TRNGs, IP protection schemes, and to mask side-channel leakage.
Moreover, memristors may also offer resilience against tampering,
by means of destructive data management [5].
It should be understood that the prospects for actual implemen-
tation of such security schemes based on emerging devices depends
on various aspects, ranging from circuit design and security analysis
in general, down to manufacturing capabilities and device maturity,
among others. Still, there is a wide range of prior art developing and
promoting such schemes, of which some are reviewed next. Note
Figure 1: A selective overview on emerging technologies, their properties, matching security schemes, and countered threats.
that other papers have reviewed emerging devices in the context
of hardware security as well, e.g., see [155–157].
4.1.1 Spintronics. Various studies proposed polymorphic behavior
and/or reconfigurability for IP protection. For example, Alasad et
al. [158] use all-spin logic for camouflaging. However, the layouts
for some of their proposed device primitives are unique; they can
be readily distinguished during imaging-based reverse engineer-
ing. Besides, their primitives suffer from relatively high energy
consumption, with around 350 µW consumed for ns-range delays.
In [159, 160], the authors introduced spintronics-based reconfig-
urable lookup tables (LUTs) for design obfuscation. However, these
approaches can fall short regarding their resilience against SAT at-
tacks [161]. Also note that such approaches are conceptionally simi-
lar to design obfuscation leveraging traditional field-programmable
gate arrays (FPGAs). In [162] and [161, 163], polymorphic and obfus-
cated logic has been studied, based on domain-wall motion devices
and on giant spin-Hall effect (GSHE) devices, respectively. One
important benefit of the latter studies over the former is that they
support all 16 possible functions per device; this renders these
devices superior in terms of SAT resilience [161, 163].
In [164], the notion of “dynamic camouflaging” based on poly-
morphic magnetoelectric spin-orbit (MESO) devices has been intro-
duced. Unlike regular camouflaging, this notion can also protect
against adversaries in the foundries and test facilities, as the true
functionality is configured only later on within the polymorphic
fabric. Thus, this notion is also conceptionally similar to logic lock-
ing; however, unlike with locking, no additional devices or gates
are required to realize this kind of security.
It has been noted that spintronics can offer some resilience
against side-channel attacks [161, 164, 165]. For example, themagne-
toelectric switching of these devices does not emit photons; related
attacks as in [27] can be ruled out to begin with. With spintronics
used for logic, fault-injection and side-channel attacks based on
magnetic fields or temperature curves may be more difficult to
achieve [161, 164], unlike with spintronics used for memories [156].
Moreover, in [165] the authors used spintronics to build up poly-
morphic circuitry and different circuit templates for the same func-
tionality, which are randomly switched between at runtime, in
order to mask the power side-channel.
In [156, 166], the authors advocate the process variations for
nanowire manufacturing in domain-wall memories for PUFs. In
[167], the authors leverage the inherently stochastic spin switching
mechanism in nanomagnets for TRNGs. Through device-level sim-
ulations, the authors demonstrate that their TRNG device works
across large temperature ranges, is immune to process variations,
and can be implemented with significantly smaller layout costs than
CMOS TRNGs. In [168], the authors propose an antiferromagnets-
based secure memory scheme, which offers protection against tam-
pering, side-channel, and read-out attacks, and also promises orders
of lower energy-per-bit than STT-RAM or PCMs.
Most studies focus on circuit design and security analysis, but few
on technology aspects. While spintronics are making fast progress
toward application, it seems important to consider technology ex-
ploration also within the concerned security studies.
4.1.2 Memristors. The potential of using memristors for hardware-
security schemes has been recognized already some years ago,
e.g., for PUFs leveraging the process variations and the stochastic
operation of memristors in 2013 [169]. More recently, another PUF
concept has been proposed [170], which leverages the non-linear
I-V characteristics of memristors (“pinched hysteresis”) and applies
analogue tuning of the memristor conductance, to increase the
performance of such PUFs and to reduce the complexity of the
peripheral circuitry. The authors of [170] provided an experimental
demonstration and measurement results for their PUF concept.
In [5], a memristive crossbar array is at the heart for secure
management of secret keys. The authors propose to combine unique
fingerprints of memristor devices with storage of key values within
those devices. They construct control circuitry such that upon
extraction of the fingerprints (for verification of authenticity of the
chip), the key is destroyed. Therefore, the secret key remains “alive”
on the chip to enable its functionality (following the notion of logic
locking) until any read-out is conducted. The authors of [5] provide
an experimental demonstration and measurement results for their
concept. Such a concept is an important step for the practicality
of logic locking, which requires tamper-proof memories for its
security promises against malicious end-users in the field.
In [171], the authors propose polymorphic circuitry for obfusca-
tion also in the context of memristors. That is possible because, in
principle, the functionality of memristor devices within such obfus-
cated logic can be reconfigured. While the authors provide a first
study at the circuit and layout level—albeit without details on the
technology exploration and library characterization—they do not
provide any experimental demonstration. Moreover, other studies
caution about delay and power consumption for memristor-based
logic unless circuit structures are optimized [172], which seems to
conflict with obfuscation principles.
4.1.3 CNTs and CNTFETs. In [173], the authors propose PUFs
which leverage the manufacturing variability of CNTs along with
the notion of Lorenz chaotic systems. The latter serves to enhance
the decorrelation of inputs and outputs for such PUFs and, thus,
renders them more resilient against machine-learning attacks.
In [174], the authors conduct a simulations-based study on CNT-
FETS concerning Trojan detection, power side-channel leakage,
and camouflaging, and they find that CNTFETs are more promising
in all aspects when compared to the traditional CMOS technology.
In [157], the authors review the use of CNTS for PUFs, TRNGs,
and also propose the technology to be used for novel sensors de-
tecting microprobing or other invasive attacks.
4.1.4 Nanowires and NWFETs. In [175], the authors propose sili-
con NWFETs for camouflaging. More specifically, they leverage the
controllable ambipolarity in NWFETs to build up a camouflaging
primitive comprising the NAND, NOR, XOR, and XNOR function-
alities. The authors also build up a polymorphic NAND/NOR gate,
and they present circuit-simulation results. In [161], however, it
was shown that such primitives are prone to SAT attacks. In [132],
the authors indicate that their concept of reconfigurable NWFETs
can also be used for hardware security, among other applications,
but they do not provide further details.
In [176, 177] the use of nanowires with plasmonics interaction
upon optical inspection is proposed and experimentally demon-
strated. This idea serves for labelling and authentication of chips
(or other goods, for that matter). Loosely related, because without
Table 1: Selected Works Leveraging 2.5D/3D Integration for
the Benefit of Hardware Security
Reference Style Scope; Means Trusted Part
[181] TSV Runtime monitoring; Whole 3D ICsplit manufacturing (SM)
[182] 2.5D IP protection; SM Interposer
[82] 2.5D Trojan prevention; SM Interposer
[183] F2F IP protection; SM, camouflaging Parts of 3D IC
[184] M3D IP protection; camouflaging Whole 3D IC
[185] F2F IP protection, Trojan prevention; Only BEOLSM, camouflaging
[186] TSV Probing protection; enclosure Whole 3D IC
[187, 188] TSV Side-channel mitigation; enclosure Whole 3D IC
[4] 2.5D Runtime monitoring; separation Interposer
the need for nanowires, the authors in [93] proposed the concept of
plasmonics-enhanced optical PUFs and provide physical-simulation
results and a security analysis.
4.2 3D and 2.5D Integration
The main benefits provided by 3D and 2.5D integration to advance
hardware security are (i) the physical separation of components, be
it across interconnects, active devices, or both, and (ii) the physical
enclosure of components, to shield them from adversarial activities
in the field. In Table 1, I summarize selected works; I discuss these
and others in some detail next. Note that other papers have reviewed
the benefits and fallacies for hardware security arising by 3D and
2.5D integration as well, e.g., see [178–180].
4.2.1 Confidentiality and Integrity of Hardware: Logic Locking. To
the best of our knowledge, 3D and 2.5D integration has not been
explored yet for logic locking. In the loosely related work [189], the
authors leverage locking principles to advance the notion of split
manufacturing. More specifically, they lock the FEOL and delegate
the unlocking to a separate, trusted BEOL facility. The authors note
that their scheme can also be unlocked at the package or board
level, which might well suggest an implementation as 2.5D IC.
4.2.2 Confidentiality and Integrity of Hardware: Camouflaging. The
authors of [184] were the first to propose camouflaging dedicatedly
for 3D integration, more specifically for M3D ICs. The authors
developed and characterized custom M3D camouflaged libraries,
and they evaluated their scheme at the gate level and at chip scale.
The camouflaging is realized by dummy contacts, which has
been proposed previously for camouflaging in classical 2D ICs.
Thus, while conceptionally not new, the work in [184] leverages
the benefits provided by M3D ICs in an effort to advance the scal-
ability of camouflaging. That is noteworthy because prior art for
camouflaging may incur considerable layout cost. For example, the
NAND-NOR-XOR primitive of [50] would incur 5.5× power, 1.6×
delay, and 4× area cost compared to a regular NAND gate.4 In con-
trast, the work in [184] report on average only 25% power cost, 15%
delay cost, and 43% area savings compared to regular 2D gates.
4.2.3 Confidentiality and Integrity of Hardware: Split Manufactur-
ing. To advance split manufacturing via 3D and 2.5D integration
seems both straightforward and promising. That is because 3D
4In practice, such cost allow for only few gates being camouflaged. Overly limited
camouflaging scales, in turn, renders such schemes prone to SAT attacks [46, 56].
and 2.5D integration allows to split a design into multiple chips,
which can maintain their FEOL and BEOL layers independently as
is, whereas the overall 2.5D/3D stack can comprise further parts
of the system-level interconnects. Moreover, concerns regarding
the practicability of classical split manufacturing—which are still
prevalent, despite proof-of-concept studies like [61, 62]—can be
elevated due to this very fact that individual chip would not have
to be split manufactured, but only the overall system.
The idea of such “3D split manufacturing” was outlined in 2008,
by Tezzaron Semiconductor [190]. Various studies are hinting at 3D
split manufacturing as well, but most have some limitations. For ex-
ample, the study [180] remains only on the conceptional level, while
the studies [82, 182] utilize 2.5D integration with “only” wires being
hidden from untrusted facilities. The latter is in principal equivalent
to traditional split manufacturing but seems more practical; still,
the studies [82, 182] report on considerable layout cost. Later on,
[183, 185, 191, 192] promoted “native 3D split manufacturing,” i.e.,
with logic being split across trusted and untrusted facilities.
One important finding of those later studies [183, 185, 191, 192]
is that the 3D partitioning as well as the vertical interconnect fabric
both play an important role and define a cost-security trade-off as
follows: the more the design is split up across multiple chips, the
higher the layout cost, due to the need for more vertical intercon-
nect links and related circuitry, but the more flexible and easier it
becomes to “dissolve” the IP across the 3D stack.
Note that [183, 185, 192] proposed 3D split manufacturing in
conjunction with camouflaging. While the study [183] applies reg-
ular, FEOL-centric camouflaging, the studies [185, 192] argue that
another camouflaging approach is more appropriate for 3D split
manufacturing, namely the obfuscation of the vertical interconnects.
Other works also suggest camouflaging at the system level. For ex-
ample, [193] proposed to obfuscate the vertical interconnect fabric
of 3D ICs by rerouting within dedicated network-on-chip (NoC)
chips “sandwiched” between the regular chips. This idea is concep-
tionally similar to the notion of randomized routing in [185, 192],
but more flexible, yet also more costly—it seems only warranted in
case 3D NoCs are to be employed in any case.
4.2.4 Confidentiality and Integrity of Hardware: Trojan Defense.
In [185], the authors leveraged the benefits provided by 3D split
manufacturing to advance the formally-secure but high-cost scheme
of [82] to mitigate Trojan insertion at manufacturing time.
Besides, 3D and 2.5D ICs seem rather more vulnerable than 2D
ICs to Trojan insertion during design and manufacturing time. For
example, the study in [194] considered the negative bias tempera-
ture instability (NBTI) effect as stealthy Trojan trigger, motivated by
the fact that thermal management is a well-known challenge for 3D
ICs. In a more general manner, I caution that the broader landscape
of suppliers and actors involved with 3D and 2.5D integration can
open up new opportunities for attackers to embed Trojans. Such
a concern has also been voiced recently in [195], along with the
wide-spread notion of wafer-level chip-scale packaging (WLCSP).
The hypothesized attack here is that some malicious fabrication
or integration facility could place a thin Trojan chip between the
target chip and the package microbumps, while that Trojan chip
would contain TSVs to both pass-through and tap into those exter-
nal connections, gaining access to all signals at will. To mitigate
detection by visual or X-ray inspection, it was argued that aligning
those TSVs with the microbump locations might suffice.
Trojan detection at runtime, however, can benefit from 3D and
2.5D integration. That is because related security features can be
implemented separately using a trusted fabrication process and
integrated/stacked later on with the commodity chip(s) to be moni-
tored [4, 81]; see also the discussion on data security below.
4.2.5 Confidentiality and Integrity of Hardware: PUFs. The integra-
tion of multiple chips into 3D/2.5D stacks seems beneficial for the
notion of PUFs, as the individual chips are subject to independent
process variations. Thus, one can build up PUFs using multiple, in-
dependent sources of entropy. In [196, 197], two such schemes have
been proposed, which further leverage the process variations of
TSVs. While promising in principle, these studies did not consider
state-of-the-art machine learning attacks like [85–88]; their actual
resilience remains yet to be demonstrated.
4.2.6 Data Security at Runtime: Unauthorized Access or Modifica-
tion of Data. 3D and 2.5D integration enables physical separation of
components and, thus, allows for trustworthy realization of security
features like runtime monitors [4, 181, 198] or verifiers [81].
Still, I caution that the physical implementation of such schemes
may become a vulnerability by itself. In [181], for example, the
authors propose introspective interfaces which, however, require
additional logic within the commodity chip to be monitored. It is
easy to see that these interfaces would fail once they are modified by
some malicious actor(s) involved with the design or manufacturing
of that commodity chip. Thus, an undesirable dependency arises,
possibly thwarting the scheme altogether. Note that the authors
themselves acknowledge this limitation in [181].
In [4], a 2.5D root of trust has been proposed, which integrates un-
trusted commodity chips/chiplets onto an active interposer which
contains security features and further forms the backbone for
system-level communication between the chips/ciplets. Thus, a
clear physical separation into commodity and security components
exists, avoiding any security-undermining dependencies.
4.2.7 Data Security at Runtime: Side-Channel and Fault-Injection
Attacks. In general, side-channel attacks seem to become more
difficult for 3D and 2.5D ICs, considering the higher density of active
devices and the more complex circuit structures and architectures,
which can result into more noisy side-channels. For example, the
authors of [199] studied power side-channel attacks on 3D ICs, and
they observed that the power noise profiles from the different chips
within the 3D IC are superposed. They also propose a randomized
cross-linking scheme of voltage supplies toward cryptographic
modules, to render attacks more difficult.
Some prior art also studied side-channel attacks targeted ex-
plicitly for 3D ICs. For example, [200] and [187] demonstrate that
thermal side-channel attacks on 3D ICs can be mitigated at runtime
and at design time, respectively. However, the approach in [200]
seems less practical; to mitigate information leakage through ther-
mal patterns, it leverages dynamic generation of additional dummy
activities, which exacerbates the challenge of thermal management
for 3D ICs naturally further. In contrast, the authors of [187] model
the impact of TSVs and module placement on heat distribution
as well as thermal leakage during floorplanning, thereby enabling
leakage mitigation along with reduction of peak temperatures.
Besides, some studies leverage 3D and 2.5D integration to ad-
vocate for security schemes otherwise considered too costly. For
example, the study in [201] leverages randomized eviction and het-
erogeneous latencies for a cache architecture. The authors demon-
strate that such techniques incur high performance overheads in
2D ICs but can be realized even with gains in 3D ICs.
As with side-channel attacks, fault-injection attacks may become
more difficult, due to the physical encapsulation of 3D/2.5D ICs.
Still, in [202] it was shown recently that a lateral re-arrangement
of the laser setup can suffice to enable such fault-injection attacks
also for backside-protected 2D ICs and possibly also for 2.5D and
3D ICs. However, with a dedicated physical design of 3D ICs, e.g.,
placing TSVs densely at the chip boundaries, forming a “vertical
shield” structure [178], along with regular shields in the BEOL and
backside protection, even such attacks might remain difficult.
4.2.8 Data Security at Runtime: Physical Read-Out and Probing
Attacks. Similar to fault-injection attacks, the notion of physical
enclosures enabled by 3D/2.5D integration may hinder read-out
and probing attacks. In [178], the authors argued for “all around
shields” enabled by 3D ICs. Similar protection against probing has
been discussed before in [186, 203]. While powerful in principle,
such schemes are yet to be demonstrated in practice.
5 CHALLENGES FOR HARDWARE SECURITY
USING EMERGING TECHNOLOGIES
As with any security scheme, also those relying on emerging tech-
nologies face some challenges. I have outlined specific limitations
and challenges for selected prior art already in the discussion above,
but here I seek to take a broader view.
Possibly the most important and complex challenges arise from
the fact that security schemes in general and those based on emerg-
ing technologies in particular rely on proper technology explo-
ration, device characterization and modeling, circuit architectures,
design strategies, etc. While security schemes tailored for CMOS
technology can leverage well-defined and well-characterized tech-
nology libraries, state-of-the-art design tools,5 etc., this is not so
straightforward for most emerging technologies, as their charac-
terization and design support is still progressing. However, the
resulting challenges may—and should—be rather considered as
chances, namely to incorporate security as best as possible right
from the beginning, and not only as an afterthought, as we often
see for security schemes using CMOS technology.
To do so, I propose that the following steps, among others and
not necessarily in that particular order, are to be considered:
(1) Establish closer interaction between the communities work-
ing on hardware security, physical design, and emerging
technologies. I argue that a collaborative exchange between
our communities is essential for any advancement.
(2) (Re-)definition of security metrics and joint “translation” of
those metrics. Only then can the emerging-technology com-
munities consider hardware security in a proper, quantifiable
5Even in the context of classical CMOS technology, there are still a plethora of chal-
lenges to be addressed to make design tools more security-aware [204].
manner during technology exploration and device design.
For example, while the correlation of switching activities and
power consumption (for estimation of power side-channel
leakage) seems rather easy to model also for emerging tech-
nologies, the commonly promoted criteria for PUFs, like
uniqueness or unpredictability, are highly device-specific
and require “translation” for effective modeling.
(3) Joint reconsideration of threat models. With the progression
of emerging technologies, it can be expected that further fal-
lacies, possibly yet unexplored, come into play. For example,
advanced tools for failure analysis of emerging technologies
can be “misused” for physical attacks in the field. For secu-
rity schemes based on CMOS technology, we have seen this
with the proliferation and wider availability of, e.g., electron
microscopy [73] and electro-optical probing [27].
(4) Technology exploration, prototyping, and joint evaluation
of securities schemes based on emerging technologies. That
is also because process variations are expected to be more
pronounced for most emerging technologies. For PUFs, e.g.,
stronger variations would serve well for uniqueness/entropy,
but hinder reproducibility. Only once such empirical insights
are available it would seem possible to devise, e.g., error
correction schemes to improve the reproducibility.
(5) Since most emerging technologies are being promoted for
CMOS integration, it becomes important to determine the
“weakest link(s) in the chain” for such hybrid implementa-
tions of security schemes. These efforts should range from
device to circuit to system level, and should also revise re-
lated design strategies as needed. Somewhat related, note
that the composition of security schemes remains a challenge
even for CMOS-only ICs; the physical-design community
should become more involved here as well [204].
6 CONCLUSION
In this paper, I have reviewed the fundamentals of hardware security
in general and discussed selected prior art. I have further reviewed
selected emerging technologies, namely (i) spintronics, (ii) memris-
tors, (iii) carbon nanotubes and related transistors, (iv) nanowires
and related transistors, and (v) 3D and 2.5D integration. I have
discussed how these technologies are promising to advance various
aspects of hardware security, and I have also reviewed related early
studies and some of their limitations.
Many of the security schemes based on emerging technologies
still require more collaborative efforts and practical validation—
which is not to be taken as pessimistic statement, rather as call to
our communities for joint action.
REFERENCES
[1] B. Krebs. (2019) First american financial corp. leaked hundreds of millions
of title insurance records. https://krebsonsecurity.com/2019/05/first-american-
financial-corp-leaked-hundreds-of-millions-of-title-insurance-records/
[2] P. Maene, J. Götzfried, R. de Clercq, T. Müller, F. Freiling, and I. Verbauwhede,
“Hardware-based trusted computing architectures for isolation and attestation,”
Trans. Comp., vol. 67, no. 3, pp. 361–374, 2018. https://doi.org/10.1109/TC.2017.
2647955
[3] H. Zhang et al., “Architectural support for containment-based security,” in Proc.
Arch. Supp. Programm. Lang. Op. Sys., 2019, pp. 361–377. https://doi.org/10.1145/
3297858.3304020
[4] M. Nabeel, M. Ashraf, S. Patnaik, V. Soteriou, O. Sinanoglu, and J. Knechtel,
“An interposer-based root of trust: Seize the opportunity for secure
system-level integration of untrusted chiplets,” Comp. Research Rep., 2019.
https://arxiv.org/abs/1906.02044
[5] H. Jiang et al., “A provable key destruction scheme based on memristive crossbar
arrays,” Nature Electronics, vol. 1, no. 10, pp. 548–554, 2018. https://doi.org/10.
1038/s41928-018-0146-5
[6] I. Verbauwhede, Ed., Secure Integrated Circuits and Systems, ser. Integrated
Circuits and Systems. Springer, 2010. https://doi.org/10.1007/978-0-387-71829-
3
[7] E. Brier, C. Clavier, and F. Olivier, “Correlation power analysis with a leakage
model,” in Proc. Cryptogr. Hardw. Embed. Sys., 2004. https://doi.org/10.1007/978-
3-540-28632-5_2
[8] P. Bayon, L. Bossuet, A. Aubert, and V. Fischer, “Fault model of electromagnetic
attacks targeting ring oscillator-based true random number generators,” J. Cryp-
togr. Eng., vol. 6, no. 1, pp. 61–74, 2016. https://doi.org/10.1007/s13389-015-0113-
2
[9] P. Qiu, D. Wang, Y. Lyu, and G. Qu, “VoltJockey: Breaching TrustZone by
software-controlled voltage manipulation over multi-core frequencies,” in Proc.
Comp. Comm. Sec., 2019, pp. 195–209. https://doi.org/10.1145/3319535.3354201
[10] C. O’Flynn and A. Dewar, “On-device power analysis across hardware security
domains.” Trans. Cryptogr. Hardw. Embed. Sys., vol. 2019, no. 4, pp. 126–153,
2019. https://doi.org/10.13154/tches.v2019.i4.126-153
[11] A. Cui and R. Housley, “BADFET: Defeating modern secure boot using
second-order pulsed electromagnetic fault injection,” in Proc. Worksh. Off.
Tech., 2017. https://www.usenix.org/conference/woot17/workshop-program/
presentation/cui
[12] Y. Zhou and D. Feng, “Side-channel attacks: Ten years after its publication and
the impacts on cryptographic module security testing,” in IACR Crypt. ePrint
Arch., no. 388, 2005. http://eprint.iacr.org/2005/388
[13] D. A. Osvik, A. Shamir, and E. Tromer, “Cache attacks and countermeasures: the
case of AES,” in IACR Crypt. ePrint Arch., 2005. https://eprint.iacr.org/2005/271
[14] M. Lipp et al., “Meltdown,” Comp. Research Rep., 2018. https://arxiv.org/abs/1801.
01207
[15] M. Schwarz et al., “ZombieLoad: Cross-privilege-boundary data sampling,”
Comp. Research Rep., 2019. https://arxiv.org/abs/1905.05726
[16] H. Groß, S. Mangard, and T. Korak, “Domain-orientedmasking: Compactmasked
hardware implementations with arbitrary protection order,” in Proc. Comp.
Comm. Sec., 2016. https://doi.org/10.1145/2996366.2996426
[17] D. Bellizia, S. Bongiovanni, P. Monsurrò, G. Scotti, A. Trifiletti, and F. B. Trotta,
“Secure double rate registers as an RTL countermeasure against power analysis
attacks,” Trans. VLSI Syst., vol. 26, no. 7, pp. 1368–1376, 2018. https://doi.org/10.
1109/TVLSI.2018.2816914
[18] B. Selmke, J. Heyszl, and G. Sigl, “Attack on a DFA protected AES by simultane-
ous laser fault injections,” in Proc. Worksh. Fault Diag. Tol. Cryptogr., 2016, pp.
36–46. https://doi.org/10.1109/FDTC.2016.16
[19] V. van der Veen et al., “Drammer: Deterministic rowhammer attacks on mobile
platforms,” in Proc. Comp. Comm. Sec., 2016, pp. 1675–1689. https://doi.org/10.
1145/2976749.2978406
[20] G. D. Natale, E. I. Vatajelu, K. S. Kannan, and L. Anghel, “Hidden-delay-fault
sensor for test, reliability and security,” in Proc. Des. Autom. Test Europe, 2019,
pp. 316–319. https://doi.org/10.23919/DATE.2019.8714891
[21] B. Karp, M. Gay, O. Keren, and I. Polian, “Security-oriented code-based ar-
chitectures for mitigating fault attacks,” in Proc. DCIS, 2018, pp. 1–6. https:
//doi.org/10.1109/DCIS.2018.8681476
[22] J. Dutertre et al., “Laser fault injection at the CMOS 28 nm technology node:
an analysis of the fault model,” in Proc. Worksh. Fault Diag. Tol. Cryptogr., 2018.
https://doi.org/10.1109/FDTC.2018.00009
[23] B. Karp, M. Gay, O. Keren, and I. Polian, “Detection and correction of malicious
and natural faults in cryptographic modules,” in Proc. PROOFS@CHES, 2018, pp.
68–82. https://easychair.org/publications/download/zMjh
[24] E. L. Principe et al., “Plasma FIB deprocessing of integrated circuits from
the backside,” Elec. Dev. Fail. Analysis, vol. 19, no. 4, pp. 36–44, 2017.
https://www.researchgate.net/profile/Robert_Chivas/publication/322264562_
Plasma_FIB_deprocessing_of_integrated_circuits_from_the_backside/links/
5a54f88e45851547b1bd55f2/Plasma-FIB-deprocessing-of-integrated-circuits-
from-the-backside.pdf
[25] H. Wang, Q. Shi, D. Forte, and M. M. Tehranipoor, “Probing attacks on integrated
circuits: Challenges and research opportunities,” Des. Test, vol. 34, no. 5, pp. 63–
71, 2017. https://doi.org/10.1109/MDAT.2017.2729398
[26] C. Helfmeier, D. Nedospasov, C. Tarnovsky, J. S. Krissler, C. Boit, and J.-P. Seifert,
“Breaking and entering through the silicon,” in Proc. Comp. Comm. Sec., 2013, pp.
733–744. https://doi.org/10.1145/2508859.2516717
[27] S. Tajik, H. Lohrke, J.-P. Seifert, and C. Boit, “On the power of optical contactless
probing: Attacking bitstream encryption of FPGAs,” in Proc. Comp. Comm. Sec.,
2017, pp. 1661–1674. https://doi.org/10.1145/3133956.3134039
[28] F. Courbon, S. Skorobogatov, and C. Woods, “Direct charge measurement
in floating gate transistors of flash EEPROM using scanning electron
microscopy,” in Proc. Int. Symp. Test. Failure Analys., 2016, pp. 1–9. https:
//pdfs.semanticscholar.org/992a/20c0a8bb71642fc44fa65f053b3524113b99.pdf
[29] H. Wang, Q. Shi, D. Forte, and M. M. Tehranipoor, “Probing assessment frame-
work and evaluation of antiprobing solutions,” Trans. VLSI Syst., vol. 27, no. 6,
pp. 1239–1252, 2019. https://doi.org/10.1109/TVLSI.2019.2901449
[30] Y. Lee, H. Lim, Y. Lee, and S. Kang, “Robust secure shield architecture for
detection and protection against invasive attacks,” Trans. Comp.-Aided Des.
Integ. Circ. Sys., 2019. https://doi.org/10.1109/TCAD.2019.2944580
[31] K. Yi, M. Park, and S. Kim, “Practical silicon-surface-protection method using
metal layer,” J. Semicond. Tech. Sci., vol. 16, no. 4, pp. 470–480, 2016. https:
//doi.org/10.5573/JSTS.2016.16.4.470
[32] H. Shen, N. Asadizanjani, M. Tehranipoor, and D. Forte, “Nanopyramid:
An optical scrambler against backside probing attacks,” in Proc. Int.
Symp. Test. Failure Analys., 2018. https://pdfs.semanticscholar.org/453a/
ce0749c374d59c4193cc26d06ac38e22c500.pdf
[33] M.Weiner, S. Manich, R. Rodríguez-Montañés, and G. Sigl, “The low area probing
detector as a countermeasure against invasive attacks,” Trans. VLSI Syst., vol. 26,
no. 2, pp. 392–403, 2018. https://doi.org/10.1109/TVLSI.2017.2762630
[34] Y. Ishai, A. Sahai, and D. Wagner, “Private circuits: Securing hardware against
probing attacks,” in Advances in Cryptology, 2003, pp. 463–481. https://doi.org/
10.1007/978-3-540-45146-4_27
[35] M. Rostami, F. Koushanfar, and R. Karri, “A primer on hardware security: Models,
methods, and metrics,” Proc. IEEE, vol. 102, no. 8, pp. 1283–1295, 2014. https:
//doi.org/10.1109/JPROC.2014.2335155
[36] J. Knechtel, S. Patnaik, and O. Sinanoglu, “Protect your chip design intellectual
property: An overview,” in Proc. Conf. Omni-Layer Intell. Sys., 2019, pp. 211–216.
https://doi.org/10.1145/3312614.3312657
[37] M. Yasin, J. J. Rajendran, and O. Sinanoglu, Trustworthy Hardware Design: Combi-
national Logic Locking Techniques. Springer, 2020. https://doi.org/10.1007/978-
3-030-15334-2
[38] M. Yasin, S. M. Saeed, J. Rajendran, and O. Sinanoglu, “Activation of logic
encrypted chips: Pre-test or post-test?” in Proc. Des. Autom. Test Europe, 2016,
pp. 139–144. https://ieeexplore.ieee.org/abstract/document/7459294
[39] S. Anceau, P. Bleuet, J. Clédière, L. Maingault, J.-l. Rainard, and R. Tucoulou,
“Nanofocused X-ray beam to reprogram secure circuits,” in Proc. Cryptogr. Hardw.
Embed. Sys., 2017, pp. 175–188. https://doi.org/10.1007/978-3-319-66787-4_9
[40] J. A. Roy, F. Koushanfar, and I. L. Markov, “Ending piracy of integrated circuits,”
Computer, vol. 43, no. 10, pp. 30–38, 2010. https://doi.org/10.1109/MC.2010.284
[41] M. Yasin, J. J. Rajendran, O. Sinanoglu, and R. Karri, “On improving the security
of logic locking,” Trans. Comp.-Aided Des. Integ. Circ. Sys., vol. 35, no. 9, pp.
1411–1424, 2016. https://doi.org/10.1109/TCAD.2015.2511144
[42] P. Subramanyan, S. Ray, and S. Malik, “Evaluating the security of logic encryp-
tion algorithms,” in Proc. Int. Symp. Hardw.-Orient. Sec. Trust, 2015, pp. 137–143.
https://doi.org/10.1109/HST.2015.7140252
[43] Y. Xie and A. Srivastava, “Mitigating SAT attack on logic locking,” in Proc.
Cryptogr. Hardw. Embed. Sys., 2016, pp. 127–146. https://doi.org/10.1007/978-3-
662-53140-2_7
[44] M. Yasin, A. Sengupta, M. T. Nabeel, M. Ashraf, J. J. Rajendran, and O. Sinanoglu,
“Provably-secure logic locking: From theory to practice,” in Proc. Comp. Comm.
Sec., 2017, pp. 1601–1618. https://doi.org/10.1145/3133956.3133985
[45] Y. Shen and H. Zhou, “Double DIP: Re-evaluating security of logic encryption
algorithms,” in Proc. Great Lakes Symp. VLSI, 2017, pp. 179–184. https://doi.org/
10.1145/3060403.3060469
[46] K. Shamsi, M. Li, T. Meade, Z. Zhao, D. Z. Pan, and Y. Jin, “AppSAT: Approxi-
mately deobfuscating integrated circuits,” in Proc. Int. Symp. Hardw.-Orient. Sec.
Trust, 2017, pp. 95–100. https://doi.org/10.1109/HST.2017.7951805
[47] M. E. Massad, J. Zhang, S. Garg, and M. V. Tripunitara, “Logic locking for
secure outsourced chip fabrication: A new attack and provably secure defense
mechanism,” Comp. Research Rep., 2017. http://arxiv.org/abs/1703.10187
[48] L. Li and A. Orailoglu, “Piercing logic locking keys through redundancy identi-
fication,” in Proc. Des. Autom. Test Europe, 2019. https://doi.org/10.23919/DATE.
2019.8714955
[49] P. Chakraborty, J. Cruz, and S. Bhunia, “SAIL:Machine learning guided structural
analysis attack on hardware obfuscation,” in Proc. Asian Hardw.-Orient. Sec. Trust
Symp., 2018, pp. 56–61. https://doi.org/10.1109/AsianHOST.2018.8607163
[50] J. Rajendran, M. Sam, O. Sinanoglu, and R. Karri, “Security analysis of integrated
circuit camouflaging,” in Proc. Comp. Comm. Sec., 2013, pp. 709–720. https:
//doi.org/10.1145/2508859.2516656
[51] B. Erbagci, C. Erbagci, N. E. C. Akkaya, and K. Mai, “A secure camouflaged
threshold voltage defined logic family,” in Proc. Int. Symp. Hardw.-Orient. Sec.
Trust, 2016, pp. 229–235. https://doi.org/10.1109/HST.2016.7495587
[52] M. Li et al., “Provably secure camouflaging strategy for IC protection,” in Proc.
Int. Conf. Comp.-Aided Des., 2016, pp. 28:1–28:8. https://doi.org/10.1145/2966986.
2967065
[53] S. Patnaik, M. Ashraf, J. Knechtel, and O. Sinanoglu, “Obfuscating the intercon-
nects: Low-cost and resilient full-chip layout camouflaging,” in Proc. Int. Conf.
Comp.-Aided Des., 2017, pp. 41–48. https://doi.org/10.1109/ICCAD.2017.8203758
[54] (2019) Circuit camouflage technology. Rambus Inc. https://www.rambus.com/
security/cryptofirewall-cores/circuit-camouflage-technology/
[55] Y. Lao and K. K. Parhi, “Obfuscating DSP circuits via high-level transformations,”
Trans. VLSI Syst., vol. 23, no. 5, pp. 819–830, 2015. https://doi.org/10.1109/TVLSI.
2014.2323976
[56] C. Yu, X. Zhang, D. Liu, M. Ciesielski, and D. Holcomb, “Incremental SAT-based
reverse engineering of camouflaged logic circuits,” Trans. Comp.-Aided Des. Integ.
Circ. Sys., vol. 36, no. 10, pp. 1647–1659, 2017. https://doi.org/10.1109/TCAD.
2017.2652220
[57] J. Rajendran, O. Sinanoglu, and R. Karri, “Is split manufacturing secure?” in Proc.
Des. Autom. Test Europe, 2013, pp. 1259–1264. https://doi.org/10.7873/DATE.2013.
261
[58] A. Sengupta, S. Patnaik, J. Knechtel, M. Ashraf, S. Garg, and O. Sinanoglu,
“Rethinking split manufacturing: An information-theoretic approachwith secure
layout techniques,” in Proc. Int. Conf. Comp.-Aided Des., 2017, pp. 329–336. https:
//doi.org/10.1109/ICCAD.2017.8203796
[59] S. Patnaik, J. Knechtel, M. Ashraf, and O. Sinanoglu, “Concerted wire lifting:
Enabling secure and cost-effective split manufacturing,” in Proc. Asia South
Pac. Des. Autom. Conf., 2018, pp. 251–258. https://doi.org/10.1109/ASPDAC.2018.
8297314
[60] S. Patnaik, M. Ashraf, J. Knechtel, and O. Sinanoglu, “Raise your game for split
manufacturing: Restoring the true functionality through BEOL,” in Proc. Des.
Autom. Conf., 2018, pp. 140:1–140:6. https://doi.org/10.1145/3195970.3196100
[61] C. McCants. (2016) Trusted integrated chips (TIC) program. https:
//www.ndia.org/-/media/sites/ndia/meetings-and-events/divisions/systems-
engineering/past-events/trusted-micro/2016-august/mccants-carl.ashx
[62] K. Vaidyanathan, B. P. Das, E. Sumbul, R. Liu, and L. Pileggi, “Building trusted
ICs using split fabrication,” in Proc. Int. Symp. Hardw.-Orient. Sec. Trust, 2014,
pp. 1–6. https://doi.org/10.1109/HST.2014.6855559
[63] Y. Wang, P. Chen, J. Hu, and J. J. Rajendran, “The cat and mouse in split manu-
facturing,” in Proc. Des. Autom. Conf., 2016, pp. 165:1–165:6. https://doi.org/10.
1145/2897937.2898104
[64] H. Li et al., “Attacking split manufacturing from a deep learning perspective,” in
Proc. Des. Autom. Conf., 2019, pp. 135:1–135:6. https://doi.org/10.1145/3316781.
3317780
[65] S. Bhunia andM. M. Tehranipoor, Eds., The Hardware TrojanWar: Attacks, Myths,
and Defenses. Springer, 2018. https://doi.org/10.1007/978-3-319-68511-3
[66] K. Basu et al., “CAD-Base: An attack vector into the electronics supply chain,”
Trans. Des. Autom. Elec. Sys., vol. 24, no. 4, pp. 38:1–38:30, 2019. https://doi.org/
10.1145/3315574
[67] P. Swierczynski, M. Fyrbiak, P. Koppe, A. Moradi, and C. Paar, “Interdiction in
practice–hardware trojan against a high-security USB flash drive,” J. Cryptogr.
Eng., vol. 7, no. 3, pp. 199–211, 2017. https://doi.org/10.1007/s13389-016-0132-7
[68] R. S. Chakraborty, F. G. Wolff, S. Paul, C. A. Papachristou, and S. Bhunia, “MERO:
A statistical approach for hardware trojan detection,” in Proc. Cryptogr. Hardw.
Embed. Sys., 2009, pp. 396–410. https://doi.org/10.1007/978-3-642-04138-9_28
[69] J. Aarestad, D. Acharyya, R.M. Rad, and J. Plusquellic, “Detecting trojans through
leakage current analysis using multiple supply pad IDDQS,” Trans. Inf. Forens.
Sec., vol. 5, no. 4, pp. 893–904, 2010. https://doi.org/10.1109/TIFS.2010.2061228
[70] Y. Jin and Y. Makris, “Hardware trojan detection using path delay fingerprint,”
in Proc. Int. Symp. Hardw.-Orient. Sec. Trust, 2008, pp. 51–57. https://doi.org/10.
1109/HST.2008.4559049
[71] E. Love, Y. Jin, and Y. Makris, “Proof-carrying hardware intellectual property: A
pathway to trusted module acquisition,” Trans. Inf. Forens. Sec., vol. 7, no. 1, pp.
25–40, 2012. https://doi.org/10.1109/TIFS.2011.2160627
[72] X. Guo, R. G. Dutta, J. He, M. M. Tehranipoor, and Y. Jin, “QIF-Verilog: Quanti-
tative information-flow based hardware description languages for pre-silicon
security assessment,” in Proc. Int. Symp. Hardw.-Orient. Sec. Trust, 2019, pp.
91–100. https://doi.org/10.1109/HST.2019.8740840
[73] T. Sugawara et al., “Reversing stealthy dopant-level circuits,” J. Cryptogr. Eng.,
vol. 5, no. 2, pp. 85–94, 2015. https://doi.org/10.1007/s13389-015-0102-5
[74] N. Vashistha et al., “Trojan scanner: Detecting hardware trojans with rapid
SEM imaging combined with image processing and machine learning,” in Proc.
Int. Symp. Test. Failure Analys., 2018. https://pdfs.semanticscholar.org/7b7d/
582034c19096c28c47bd1452e8becf287abc.pdf
[75] A. Chandrasekharan, K. Schmitz, U. Kuhne, and R. Drechsler, “Ensuring safety
and reliability of IP-based system design – a container approach,” in Proc. Int.
Symp. Rapid System Prototyping, 2015, pp. 76–82. https://doi.org/10.1109/RSP.
2015.7416550
[76] K. Xiao, D. Forte, and M. Tehranipoor, “A novel built-in self-authentication
technique to prevent inserting hardware trojans,” Trans. Comp.-Aided Des. Integ.
Circ. Sys., vol. 33, no. 12, pp. 1778–1791, 2014. https://doi.org/10.1109/TCAD.
2014.2356453
[77] L. W. Kim and J. D. Villasenor, “A system-on-chip bus architecture for thwarting
integrated circuit trojan horses,” Trans. VLSI Syst., vol. 19, no. 10, pp. 1921–1926,
2011. https://doi.org/10.1109/TVLSI.2010.2060375
[78] S. Bhunia et al., “Protection against hardware trojan attacks: Towards a com-
prehensive solution,” Des. Test, vol. 30, no. 3, pp. 6–17, 2013. https://doi.org/10.
1109/MDT.2012.2196252
[79] A. Basak, S. Bhunia, T. Tkacik, and S. Ray, “Security assurance for system-
on-chip designs with untrusted IPs,” Trans. Inf. Forens. Sec., vol. 12, no. 7, pp.
1515–1528, 2017. https://doi.org/10.1109/TIFS.2017.2658544
[80] T. F. Wu, K. Ganesan, Y. A. Hu, H. S. P. Wong, S. Wong, and S. Mitra, “TPAD:
Hardware trojan prevention and detection for trusted integrated circuits,” Trans.
Comp.-Aided Des. Integ. Circ. Sys., vol. 35, no. 4, pp. 521–534, 2016. https://doi.
org/10.1109/TCAD.2015.2474373
[81] R. S. Wahby, M. Howald, S. Garg, and M. Walfish, “Verifiable ASICs,” Proc. Symp.
Sec. Priv., pp. 759–778, 2016. https://doi.org/10.1109/SP.2016.51
[82] F. Imeson, A. Emtenan, S. Garg, and M. V. Tripunitara, “Securing
computer hardware using 3D integrated circuit (IC) technology and
split manufacturing for obfuscation,” in Proc. USENIX Sec. Symp., 2013,
pp. 495–510. https://www.usenix.org/conference/usenixsecurity13/technical-
sessions/presentation/imeson
[83] C. Herder, M. D. Yu, F. Koushanfar, and S. Devadas, “Physical unclonable func-
tions and applications: A tutorial,” Proc. IEEE, vol. 102, no. 8, pp. 1126–1141, 2014.
https://doi.org/10.1109/JPROC.2014.2320516
[84] R. Maes and I. Verbauwhede, Physically Unclonable Functions: A Study on the
State of the Art and Future Research Directions. Springer, 2010, pp. 3–37. https:
//doi.org/10.1007/978-3-642-14452-3_1
[85] C. H. Chang, Y. Zheng, and L. Zhang, “A retrospective and a look forward:
Fifteen years of physical unclonable function advancement,” IEEE Circuits and
Systems Magazine, vol. 17, no. 3, pp. 32–62, 2017. https://doi.org/10.1109/MCAS.
2017.2713305
[86] F. Ganji, “On the learnability of physically unclonable functions,” Ph.D. disserta-
tion, Technische Universität Berlin, 2017. https://doi.org/10.14279/depositonce-
6174
[87] U. Rührmair et al., “PUF modeling attacks on simulated and silicon data,” Trans.
Inf. Forens. Sec., vol. 8, no. 11, pp. 1876–1891, 2013. https://doi.org/10.1109/TIFS.
2013.2279798
[88] Y. Liu, Y. Xie, C. Bao, and A. Srivastava, “A combined optimization-theoretic
and side-channel approach for attacking strong physical unclonable functions,”
Trans. VLSI Syst., vol. 26, no. 1, pp. 73–81, 2018. https://doi.org/10.1109/TVLSI.
2017.2759731
[89] R. Pappu, B. Recht, J. Taylor, and N. Gershenfeld, “Physical one-way functions,”
Science, vol. 297, no. 5589, pp. 2026–2030, 2002. https://doi.org/10.1126/science.
1074376
[90] U. Rührmair et al., “Optical PUFs reloaded,” in IACR Crypt. ePrint Arch., 2013.
https://eprint.iacr.org/2013/215
[91] P. Tuyls and B. Škorić, Strong Authentication with Physical Unclonable Functions.
Springer, 2007, pp. 133–148. https://doi.org/10.1007/978-3-540-69861-6_10
[92] B. C. Grubel et al., “Silicon photonic physical unclonable function,” Opt. Express,
vol. 25, no. 11, pp. 12 710–12 721, 2017. https://doi.org/10.1364/OE.25.012710
[93] J. Knechtel, J. Gosciniak, A. Bojesomo, S. Patnaik, O. Sinanoglu, and M. Rasras,
“Toward physically unclonable functions from plasmonics-enhanced silicon disc
resonators,” J. Lightwave Tech., vol. 37, pp. 3805–3814, 2019. https://doi.org/10.
1109/JLT.2019.2920949
[94] H. Amrouch, G. Pahwa, A. D. Gaidhane, J. Henkel, and Y. S. Chauhan, “Negative
capacitance transistor to address the fundamental limitations in technology
scaling: Processor performance,” IEEE Access, vol. 6, pp. 52 754–52 765, 2018.
https://doi.org/10.1109/ACCESS.2018.2870916
[95] D. Perez et al., “Multipurpose silicon photonics signal processor core,” Nature
Communications, vol. 8, no. 1, p. 636, Sep. 2017. https://doi.org/10.1038/s41467-
017-00714-1
[96] J. S. Orcutt et al., “Open foundry platform for high-performance electronic-
photonic integration,” Opt. Express, vol. 20, no. 11, pp. 12 222–12 232, 2012. https:
//doi.org/10.1364/OE.20.012222
[97] M. M. Sabry Aly et al., “The N3XT approach to energy-efficient abundant-data
computing,” Proc. IEEE, vol. 107, no. 1, pp. 19–48, 2019. https://doi.org/10.1109/
JPROC.2018.2882603
[98] S.-h. C. Baek et al., “Complementary logic operation based on electric-field
controlled spin-orbit torques,” Nature Electronics, vol. 1, no. 7, pp. 398–403, 2018.
https://doi.org/10.1038/s41928-018-0099-8
[99] S. Manipatruni et al., “Scalable energy-efficient magnetoelectric spin-orbit logic,”
Nature, vol. 565, no. 7737, pp. 35–42, 2018. https://doi.org/10.1038/s41586-018-
0770-2
[100] D. E. Nikonov and I. A. Young, “Overview of beyond-CMOS devices and a
uniform methodology for their benchmarking,” Proc. IEEE, vol. 101, no. 12, pp.
2498–2533, 2013. https://doi.org/10.1109/JPROC.2013.2252317
[101] A. Makarov, T. Windbacher, V. Sverdlov, and S. Selberherr, “CMOS-compatible
spintronic devices: a review,” Semiconductor Science and Technology, vol. 31,
no. 11, p. 113006, 2016. https://doi.org/10.1088/0268-1242/31/11/113006
[102] X. Fong et al., “Spin-transfer torque devices for logic and memory: Prospects
and perspectives,” Trans. Comp.-Aided Des. Integ. Circ. Sys., vol. 35, no. 1, pp.
1–22, 2016. https://doi.org/10.1109/TCAD.2015.2481793
[103] N. Rangarajan, S. Patnaik, J. Knechtel, O. Sinanoglu, and S. Rakheja, “Spin-based
reconfigurable logic for power- and area-efficient applications,” Des. Test, vol. 36,
no. 3, pp. 22–30, 2019. https://doi.org/10.1109/MDAT.2019.2895021
[104] W. Han, R. K. Kawakami, M. Gmitra, and J. Fabian, “Graphene spintronics,”
Nature Nanotechnology, vol. 9, no. 10, pp. 794–807, 2014. https://doi.org/10.1038/
nnano.2014.214
[105] J. Linder and J. W. A. Robinson, “Superconducting spintronics,” Nature Physics,
vol. 11, no. 4, pp. 307–315, 2015. https://doi.org/10.1038/nphys3242
[106] A. R. Rocha, V. M. García-suárez, S. W. Bailey, C. J. Lambert, J. Ferrer, and
S. Sanvito, “Towards molecular spintronics,” Nature Materials, vol. 4, no. 4, pp.
335–339, 2005. https://doi.org/10.1038/nmat1349
[107] S. Bhatti, R. Sbiaa, A. Hirohata, H. Ohno, S. Fukami, and S. Piramanayagam,
“Spintronics based random access memory: a review,” Materials Today, vol. 20,
no. 9, pp. 530–548, 2017. https://doi.org/10.1016/j.mattod.2017.07.007
[108] N. Rangarajan, A. Parthasarathy, N. Kani, and S. Rakheja, “Energy-efficient
computing with probabilistic magnetic bits – performance modeling and com-
parison against probabilistic CMOS logic,” Trans. Magnetics, vol. 53, no. 11, pp.
1–10, 2017. https://doi.org/10.1109/TMAG.2017.2696041
[109] S. Matsunaga et al., “Fabrication of a nonvolatile full adder based on logic-in-
memory architecture using magnetic tunnel junctions,” Applied Physics Express,
vol. 1, no. 9, p. 091301, 2008. https://doi.org/10.1143/APEX.1.091301
[110] L. Chua, “Memristor-the missing circuit element,” IEEE Transactions on Cir-
cuit Theory, vol. 18, no. 5, pp. 507–519, 1971. https://doi.org/10.1109/TCT.1971.
1083337
[111] A. C. Torrezan, J. P. Strachan, G. Medeiros-Ribeiro, and R. S. Williams, “Sub-
nanosecond switching of a tantalum oxide memristor,” Nanotechnology, vol. 22,
no. 48, p. 485203, 2011. https://doi.org/10.1088/0957-4484/22/48/485203
[112] X. Wang and Y. Chen, “Spintronic memristor devices and application,” in Proc.
Des. Autom. Test Europe, 2010, pp. 667–672. https://doi.org/10.1109/DATE.2010.
5457118
[113] M. V. Il’ina et al., “Memristive switching mechanism of vertically aligned carbon
nanotubes,” Carbon, vol. 123, pp. 514–524, 2017. https://doi.org/10.1016/j.carbon.
2017.07.090
[114] L. Chua, “Resistance switching memories are memristors,” Applied Physics A,
vol. 102, no. 4, pp. 765–783, 2011. https://doi.org/10.1007/s00339-011-6264-9
[115] S. Kvatinsky, E. G. Friedman, A. Kolodny, and U. C. Weiser, “The desired mem-
ristor for circuit designers,” IEEE Circuits and Systems Magazine, vol. 13, no. 2,
pp. 17–22, 2013. https://doi.org/10.1109/MCAS.2013.2256257
[116] M. D. Ventra and Y. V. Pershin, “On the physical properties of memristive,
memcapacitive and meminductive systems,” Nanotechnology, vol. 24, no. 25, p.
255201, 2013. https://doi.org/10.1088/0957-4484/24/25/255201
[117] P. Meuffels and R. Soni, “Fundamental issues and problems in the realization of
memristors,” Comp. Research Rep., 2012. https://arxiv.org/abs/1207.7319
[118] J. Yang-Scharlotta, M. Fazio, M. Amrbar, M. White, and D. Sheldon, “Reliability
characterization of a commercial TaOx-based ReRAM,” in Proc. Int. Integ. Rel.
Worksh., 2014, pp. 131–134. https://doi.org/10.1109/IIRW.2014.7049528
[119] J. Zahurak et al., “Process integration of a 27nm, 16Gb Cu ReRAM,” in Proc. Int.
Elec. Devices Meeting, 2014, pp. 6.2.1–6.2.4. https://doi.org/10.1109/IEDM.2014.
7046994
[120] R. Tetzlaff, Memristors and memristive systems. Springer, 2013. https://doi.org/
10.1007/978-1-4614-9068-5
[121] F. Cai et al., “A fully integrated reprogrammable memristor-CMOS system for
efficient multiply-accumulate operations,” Nature Electronics, vol. 2, no. 7, pp.
290–299, 2019. https://doi.org/10.1038/s41928-019-0270-x
[122] A. Todri-Sanial, J. Dijon, and A. Maffucci, Eds., Carbon Nanotubes for Intercon-
nects. Springer, 2017. https://doi.org/10.1007/978-3-319-29746-0
[123] M. P. Anantram and F. Léonard, “Physics of carbon nanotube electronic devices,”
Reports on Progress in Physics, vol. 69, no. 3, pp. 507–561, 2006. https://doi.org/
10.1088/0034-4885/69/3/r01
[124] J. Lienig and M. Thiele, “Mitigating electromigration in physical design,” in
Fundamentals of Electromigration-Aware Integrated Circuit Design. Springer,
2018, pp. 99–148. https://doi.org/10.1007/978-3-319-73558-0_4
[125] A. D. Franklin et al., “Sub-10 nm carbon nanotube transistor,” Nano Letters,
vol. 12, no. 2, pp. 758–762, 2012. https://doi.org/10.1021/nl203701g
[126] B. Uhlig et al., “Challenges and progress on carbon nanotube integration for
beol interconnects,” in Proc. Int. Interconn. Tech. Conf., 2018, pp. 16–18. https:
//doi.org/10.1109/IITC.2018.8454842
[127] C. Subramaniam et al., “Carbon nanotube-copper exhibiting metal-like thermal
conductivity and silicon-like thermal expansion for efficient cooling of electron-
ics,” Nanoscale, vol. 6, pp. 2669–2674, 2014. https://doi.org/10.1039/C3NR05290G
[128] M. M. Shulaker et al., “Carbon nanotube computer,” Nature, vol. 501, pp. 526–530,
2013. https://doi.org/10.1038/nature12502
[129] T. F. Wu et al., “Hyperdimensional computing exploiting carbon nanotube FETs,
resistive RAM, and their monolithic 3D integration,” J. Sol.-St. Circ., vol. 53,
no. 11, pp. 3183–3196, 2018. https://doi.org/10.1109/JSSC.2018.2870560
[130] Z. Chen, D. Farmer, S. Xu, R. Gordon, P. Avouris, and J. Appenzeller, “Externally
assembled gate-all-around carbon nanotube field-effect transistor,” Electron
Device Letters, vol. 29, no. 2, pp. 183–185, 2008. https://doi.org/10.1109/LED.2007.
914069
[131] J. Zhang et al., “Robust digital VLSI using carbon nanotubes,” Trans. Comp.-Aided
Des. Integ. Circ. Sys., vol. 31, no. 4, pp. 453–471, 2012. https://doi.org/10.1109/
TCAD.2012.2187527
[132] T. Mikolajick, A. Heinzig, J. Trommer, T. Baldauf, and W. M. Weber, “The RFET–
a reconfigurable nanowire transistor and its application to novel electronic
circuits and systems,” Semiconductor Science and Technology, vol. 32, no. 4, p.
043001, 2017. https://doi.org/10.1088/1361-6641/aa5581
[133] T. Bryllert, L. . Wernersson, L. E. Froberg, and L. Samuelson, “Vertical high-
mobility wrap-gated inas nanowire transistor,” IEEE Electron Device Letters,
vol. 27, no. 5, pp. 323–325, 2006. https://doi.org/10.1109/LED.2006.873371
[134] A. L. Briseno, S. C. Mannsfeld, S. A. Jenekhe, Z. Bao, and Y. Xia, “Introducing
organic nanowire transistors,” Materials Today, vol. 11, no. 4, pp. 38–47, 2008.
https://doi.org/10.1016/S1369-7021(08)70055-5
[135] W. Lu, P. Xie, and C. M. Lieber, “Nanowire transistor performance limits and
applications,” Trans. Electron Dev., vol. 55, no. 11, pp. 2859–2876, 2008. https:
//doi.org/10.1109/TED.2008.2005158
[136] J. Colinge et al., “Junctionless nanowire transistor (JNT): Properties and design
guidelines,” Solid-State Electronics, vol. 65-66, pp. 33–37, 2011. https://doi.org/10.
1016/j.sse.2011.06.004
[137] A. Singh, M. Khosla, and B. Raj, “Comparative analysis of carbon nanotube
field effect transistor and nanowire transistor for low power circuit design,”
Journal of Nanoelectronics and Optoelectronics, vol. 11, no. 3, pp. 388–393, 2016.
https://doi.org/10.1166/jno.2016.1913
[138] T. B. Hook, “Power and technology scaling into the 5 nm node with stacked
nanosheets,” Joule, vol. 2, no. 1, pp. 1–4, 2018. https://doi.org/10.1016/j.joule.
2017.10.014
[139] X. Vu, R. GhoshMoulick, J. Eschermann, R. Stockmann, A. Offenhäusser, and
S. Ingebrandt, “Fabrication and application of silicon nanowire transistor arrays
for biomolecular detection,” Sensors and Actuators B: Chemical, vol. 144, no. 2,
pp. 354–360, 2010. https://doi.org/10.1016/j.snb.2008.11.048
[140] J. Knechtel, O. Sinanoglu, I. A. M. Elfadel, J. Lienig, and C. C. N. Sze, “Large-
scale 3D chips: Challenges and solutions for design automation, testing, and
trustworthy integration,” Trans. Sys. LSI Des. Method., vol. 10, pp. 45–62, 2017.
https://doi.org/10.2197/ipsjtsldm.10.45
[141] R. Radojcic, More-than-Moore 2.5D and 3D SiP Integration. Springer, 2017.
https://doi.org/10.1007/978-3-319-52548-8
[142] I. A. M. Elfadel and G. Fettweis, Eds., 3D Stacked Chips – From Emerging Processes
to Heterogeneous Systems. Springer, 2016. https://doi.org/10.1007/978-3-319-
20481-9
[143] S. S. Iyer, “Three-dimensional integration: An industry perspective,” MRS Bul-
letin, vol. 40, no. 3, pp. 225–232, 2015. https://doi.org/10.1557/mrs.2015.32
[144] D. Fick et al., “Centip3De: A cluster-based NTC architecture with 64 ARM
Cortex-M3 cores in 3D stacked 130 nm CMOS,” J. Sol.-St. Circ., vol. 48, no. 1, pp.
104–117, 2013. https://doi.org/10.1109/JSSC.2012.2222814
[145] D. H. Kim et al., “3D-MAPS: 3D massively parallel processor with stacked
memory,” in Proc. Int. Sol.-St. Circ. Conf., 2012, pp. 188–190. https://doi.org/10.
1109/ISSCC.2012.6176969
[146] A. Shilov. (2018) AMD previews EPYC rome processor: Up to 64 Zen
2 cores. https://www.anandtech.com/show/13561/amd-previews-epyc-rome-
processor-up-to-64-zen-2-cores
[147] V. F. Pavlidis, I. Savidis, and E. G. Friedman, Three-dimensional In-
tegrated Circuit Design, 2nd ed. Morgan Kaufmann Publishers Inc.,
2017. https://www.sciencedirect.com/book/9780124105010/three-dimensional-
integrated-circuit-design
[148] S. M. P. D. et al., “A scalable network-on-chip microprocessor with 2.5D inte-
grated memory and accelerator,” Trans. Circ. Sys., vol. 64, no. 6, pp. 1432–1443,
2017. https://doi.org/10.1109/TCSI.2016.2647322
[149] J. Kim et al., “Architecture, chip, and package co-design flow for 2.5D IC design
enabling heterogeneous IP reuse,” in Proc. Des. Autom. Conf., 2019. https://doi.
org/10.1145/3316781.3317775
[150] D. Stow, Y. Xie, T. Siddiqua, and G. H. Loh, “Cost-effective design of scalable
high-performance systems using active and passive interposers,” in Proc. Int.
Conf. Comp.-Aided Des., 2017. https://doi.org/10.1109/ICCAD.2017.8203849
[151] F. Clermidy et al., “New perspectives for multicore architectures using advanced
technologies,” in Proc. Int. Elec. Devices Meeting, 2016, pp. 35.1.1–35.1.4. https:
//doi.org/10.1109/IEDM.2016.7838545
[152] S. Takaya et al., “A 100GB/s wide I/O with 4096b TSVs through an active silicon
interposer with in-place waveform capturing,” in Proc. Int. Sol.-St. Circ. Conf.,
2013, pp. 434–435. https://doi.org/10.1109/ISSCC.2013.6487803
[153] J. H. Lau, “The most cost-effective integrator (TSV interposer) for 3D IC in-
tegration system-in-package (SiP),” in Proc. ASME InterPACK, 2011, pp. 53–63.
https://doi.org/10.1115/IPACK2011-52189
[154] C. C. Lee et al., “An overview of the development of a GPU with integrated HBM
on silicon interposer,” in Proc. Elec. Compon. Tech. Conf., 2016, pp. 1439–1444.
https://doi.org/10.1109/ECTC.2016.348
[155] J. Rajendran et al., “Nano meets security: Exploring nanoelectronic devices
for security applications,” Proc. IEEE, vol. 103, no. 5, pp. 829–849, 2015. https:
//doi.org/10.1109/JPROC.2014.2387353
[156] S. Ghosh, “Spintronics and security: Prospects, vulnerabilities, attack models,
and preventions,” Proc. IEEE, vol. 104, no. 10, pp. 1864–1893, 2016. https://doi.
org/10.1109/JPROC.2016.2583419
[157] F. Rahman, B. Shakya, X. Xu, D. Forte, and M. Tehranipoor, “Security beyond
CMOS: Fundamentals, applications, and roadmap,” Trans. VLSI Syst., vol. PP,
no. 99, pp. 1–14, 2017. https://doi.org/10.1109/TVLSI.2017.2742943
[158] Q. Alasad, J. Yuan, and D. Fan, “Leveraging all-spin logic to improve hardware
security,” in Proc. Great Lakes Symp. VLSI, 2017, pp. 491–494. https://doi.org/10.
1145/3060403.3060471
[159] T. Winograd, H. Salmani, H. Mahmoodi, K. Gaj, and H. Homayoun, “Hybrid
STT-CMOS designs for reverse-engineering prevention,” in Proc. Des. Autom.
Conf., 2016, pp. 88–93. https://doi.org/10.1145/2897937.2898099
[160] J. Yang et al., “Exploiting spin-orbit torque devices as reconfigurable logic for
circuit obfuscation,” Trans. Comp.-Aided Des. Integ. Circ. Sys., 2018. https://doi.
org/10.1109/TCAD.2018.2802870
[161] S. Patnaik, N. Rangarajan, J. Knechtel, O. Sinanoglu, and S. Rakheja, “Spin-
orbit torque devices for hardware security: From deterministic to probabilistic
regime,” Trans. Comp.-Aided Des. Integ. Circ. Sys., vol. Early Access, 2019. https:
//doi.org/10.1109/TCAD.2019.2917856
[162] F. Parveen, Z. He, S. Angizi, and D. Fan, “Hybrid polymorphic logic gate with
5-terminal magnetic domain wall motion device,” in Proc. Comp. Soc. Symp. VLSI,
2017, pp. 152–157. https://doi.org/10.1109/ISVLSI.2017.35
[163] S. Patnaik, N. Rangarajan, J. Knechtel, O. Sinanoglu, and S. Rakheja, “Advancing
hardware security using polymorphic and stochastic spin-hall effect devices,” in
Proc. Des. Autom. Test Europe, 2018, pp. 97–102. https://doi.org/10.23919/DATE.
2018.8341986
[164] N. Rangarajan, S. Patnaik, J. Knechtel, R. Karri, O. Sinanoglu, and
S. Rakheja, “Opening the doors to dynamic camouflaging: Harnessing
the power of polymorphic devices,” Comp. Research Rep., 2018. https:
//arxiv.org/abs/1811.06012
[165] A. Roohi and R. F. DeMara, “PARC: A novel design methodology for power
analysis resilient circuits using spintronics,” Trans. Nanotech., vol. 18, pp. 885–
889, 2019. https://doi.org/10.1109/TNANO.2019.2934887
[166] A. S. Iyengar, S. Ghosh, and K. Ramclam, “Domain wall magnets for embedded
memory and hardware security,” J. Emerg. Sel. Topics Circ. Sys., vol. 5, no. 1, pp.
40–50, 2015. https://doi.org/10.1109/JETCAS.2015.2398232
[167] N. Rangarajan, A. Parthasarathy, and S. Rakheja, “A spin-based true randomnum-
ber generator exploiting the stochastic precessional switching of nanomagnets,”
J. Appl. Phys., vol. 121, no. 22, p. 223905, 2017. https://doi.org/10.1063/1.4985702
[168] N. Rangarajan, S. Patnaik, J. Knechtel, O. Sinanoglu, and S. Rakheja, “SMART:
Secure magnetoelectric antiferromagnet-based tamper-proof non-volatile
memory,” Comp. Research Rep., 2019. https://arxiv.org/abs/1902.07792
[169] G. S. Rose, J. Rajendran, N. McDonald, R. Karri, M. Potkonjak, and B. Wysocki,
“Hardware security strategies exploiting nanoelectronic circuits,” in Proc. Asia
South Pac. Des. Autom. Conf., 2013, pp. 368–372. https://doi.org/10.1109/ASPDAC.
2013.6509623
[170] H. Nili et al., “Hardware-intrinsic security primitives enabled by analogue state
and nonlinear conductance variations in integratedmemristors,”Nature Electron-
ics, vol. 1, no. 3, pp. 197–202, 2018. https://doi.org/10.1038/s41928-018-0039-7
[171] A. Rezaei, J. Gu, and H. Zhou, “Hybrid memristor-CMOS obfuscation against
untrusted foundries,” in Proc. Comp. Soc. Symp. VLSI, 2019, pp. 535–540. https:
//doi.org/10.1109/ISVLSI.2019.00102
[172] L. Guckert and E. E. Swartzlander, “Optimized memristor-based multipliers,”
IEEE Transactions on Circuits and Systems I: Regular Papers, vol. 64, no. 2, pp.
373–385, Feb 2017. https://doi.org/10.1109/TCSI.2016.2606433
[173] L. Liu, H. Huang, and S. Hu, “Lorenz chaotic system-based carbon nanotube
physical unclonable functions,” Trans. Comp.-Aided Des. Integ. Circ. Sys., vol. 37,
no. 7, pp. 1408–1421, 2018. https://doi.org/10.1109/TCAD.2017.2762919
[174] C. K. H. Suresh, B. Mazumdar, S. S. Ali, and O. Sinanoglu, “A comparative
security analysis of current and emerging technologies,” Micro, vol. 36, no. 5, pp.
50–61, 2016. https://doi.org/10.1109/MM.2016.87
[175] Y. Bi et al., “Emerging technology-based design of primitives for hardware
security,” J. Emerg. Tech. Comp. Sys., vol. 13, no. 1, pp. 3:1–3:19, 2016. https:
//doi.org/10.1145/2816818
[176] Y. Cui, R. S. Hegde, I. Y. Phang, H. K. Lee, and X. Y. Ling, “Encoding molecular
information in plasmonic nanostructures for anti-counterfeiting applications,”
Nanoscale, no. 6, pp. 282–288, 2014. https://doi.org/10.1039/C3NR04375D
[177] K. Park et al., “Plasmonic nanowire-enhanced upconversion luminescence for
anticounterfeit devices,” Advanced Functional Materials, vol. 26, no. 43, pp. 7836–
7846, 2016. https://doi.org/10.1002/adfm.201603428
[178] J. Knechtel, S. Patnaik, and O. Sinanoglu, “3D integration: Another dimension
toward hardware security,” in Proc. Int. On-Line Test Symp., 2019, pp. 147–150.
https://doi.org/10.1109/IOLTS.2019.8854395
[179] Y. Xie, C. Bao, C. Serafy, T. Lu, A. Srivastava, and M. Tehranipoor, “Security and
vulnerability implications of 3D ICs,” Trans. Multi-Scale Comp. Sys., vol. 2, no. 2,
pp. 108–122, 2016. https://doi.org/10.1109/TMSCS.2016.2550460
[180] J. Dofe, P. Gu, D. Stow, Q. Yu, E. Kursun, and Y. Xie, “Security threats and
countermeasures in three-dimensional integrated circuits,” in Proc. Great Lakes
Symp. VLSI, 2017, pp. 321–326. https://doi.org/10.1145/3060403.3060500
[181] J. Valamehr et al., “A 3-D split manufacturing approach to trustworthy system
development,” Trans. Comp.-Aided Des. Integ. Circ. Sys., vol. 32, no. 4, pp. 611–615,
2013. https://doi.org/10.1109/TCAD.2012.2227257
[182] Y. Xie, C. Bao, and A. Srivastava, “Security-aware 2.5D integrated circuit design
flow against hardware IP piracy,” Computer, vol. 50, no. 5, pp. 62–71, 2017.
https://doi.org/10.1109/MC.2017.121
[183] P. Gu, D. Stow, P.Mukim, S. Li, and Y. Xie, “Cost-efficient 3D integration to hinder
reverse engineering during and after manufacturing,” in Proc. Asian Hardw.-
Orient. Sec. Trust Symp., 2018, pp. 74–79. https://doi.org/10.1109/AsianHOST.
2018.8607176
[184] C. Yan, J. Dofe, S. Kontak, Q. Yu, and E. Salman, “Hardware-efficient logic
camouflaging for monolithic 3D ICs,” Trans. Circ. Sys., vol. 65, no. 6, pp. 799–803,
2018. https://doi.org/10.1109/TCSII.2017.2749523
[185] S. Patnaik, M. Ashraf, O. Sinanoglu, and J. Knechtel, “A modern approach to IP
protection and trojan prevention: Split manufacturing for 3D ICs and obfuscation
of vertical interconnects,” Trans. Emerg. Top. Comp., vol. Early Access, 2019.
https://doi.org/10.1109/TETC.2019.2933572
[186] J. M. Cioranesco et al., “Cryptographically secure shields,” in Proc. Int. Symp.
Hardw.-Orient. Sec. Trust, 2014, pp. 25–31. https://doi.org/10.1109/HST.2014.
6855563
[187] J. Knechtel and O. Sinanoglu, “On mitigation of side-channel attacks in 3D ICs:
Decorrelating thermal patterns from power and activity,” in Proc. Des. Autom.
Conf., 2017, pp. 12:1–12:6. https://doi.org/10.1145/3061639.3062293
[188] C. Bao and A. Srivastava, “Reducing timing side-channel information leakage
using 3D integration,” Trans. Dependable Sec. Comp., vol. 16, no. 4, pp. 665–678,
2019. https://doi.org/10.1109/TDSC.2017.2712156
[189] A. Sengupta, M. Nabeel, J. Knechtel, and O. Sinanoglu, “A new paradigm in split
manufacturing: Lock the FEOL, unlock at the BEOL,” in Proc. Des. Autom. Test
Europe, 2019, pp. 414–419. https://doi.org/10.23919/DATE.2019.8715281
[190] Tezzaron Semiconductor, “3D-ICs and integrated circuit security,” Tezzaron
Semiconductor, Tech. Rep., 2008. http://tezzaron.com/media/3D-ICs_and_
Integrated_Circuit_Security.pdf
[191] J. DeVale, R. Rakvic, and K. Rudd, “Another dimension in integrated circuit trust,”
J. Cryptogr. Eng., vol. 8, no. 4, pp. 315–326, 2017. https://doi.org/10.1007/s13389-
017-0164-7
[192] S. Patnaik, M. Ashraf, O. Sinanoglu, and J. Knechtel, “Best of both worlds:
Integration of split manufacturing and camouflaging into a security-driven
CAD flow for 3D ICs,” in Proc. Int. Conf. Comp.-Aided Des., 2018, pp. 8:1–8:8.
https://doi.org/10.1145/3240765.3240784
[193] J. Dofe, Q. Yu, H. Wang, and E. Salman, “Hardware security threats and potential
countermeasures in emerging 3D ICs,” in Proc. Great Lakes Symp. VLSI, 2016, pp.
69–74. https://doi.org/10.1145/2902961.2903014
[194] S. F. Mossa, S. R. Hasan, and O. Elkeelany, “Self-triggering hardware trojan: Due
to NBTI related aging in 3-D ICs,” Integration, vol. 58, no. Supplement C, pp.
116–124, 2017. https://doi.org/10.1016/j.vlsi.2016.12.013
[195] A. “bunnie” Huang, S. “xobs” Cross, and T. Marble. (2019) Open source
is insufficient to solve trust problems in hardware. Chaos Computer Club.
36C3, minutes 14:35–16:40. https://media.ccc.de/v/36c3-10690-open_source_is_
insufficient_to_solve_trust_problems_in_hardware
[196] M. Wang, A. Yates, and I. L. Markov, “SuperPUF: Integrating heterogeneous
physically unclonable functions,” in Proc. Int. Conf. Comp.-Aided Des., 2014, pp.
454–461. https://doi.org/10.1109/ICCAD.2014.7001391
[197] C. Wang, J. Zhou, K. Guruprasad, X. Liu, R. Weerasekera, and T. T. Kim, “TSV-
based PUF circuit for 3DIC sensor nodes in IoT applications,” in Proc. Electron.
Dev. Solid State Circ., 2015, pp. 313–316. https://doi.org/10.1109/EDSSC.2015.
7285113
[198] S. Mysore, B. Agrawal, N. Srivastava, S.-C. Lin, K. Banerjee, and T. Sherwood,
“Introspective 3D chips,” SIGOPS Operat. Sys. Rev., vol. 40, no. 5, pp. 264–273,
2006. https://doi.org/10.1145/1168857.1168890
[199] J. Dofe and Q. Yu, “Exploiting PDN noise to thwart correlation power analysis
attacks in 3D ICs,” in Proc. Int. Worksh. Sys.-Level Interconn. Pred., 2018. https:
//doi.org/10.1145/3225209.3225212
[200] P. Gu, D. Stow, R. Barnes, E. Kursun, and Y. Xie, “Thermal-aware 3D design
for side-channel information leakage,” in Proc. Int. Conf. Comp. Des., 2016, pp.
520–527. https://doi.org/10.1109/ICCD.2016.7753336
[201] C. Bao and A. Srivastava, “3D integration: New opportunities in defense against
cache-timing side-channel attacks,” in Proc. Int. Conf. Comp. Des., 2015, pp.
273–280. https://doi.org/10.1109/ICCD.2015.7357114
[202] J. Rodriguez, A. Baldomero, V. Montilla, and J. Mujal, “LLFI: Lateral laser fault
injection attack,” in Proc. Worksh. Fault Diag. Tol. Cryptogr., 2019, pp. 41–47.
https://doi.org/10.1109/FDTC.2019.00014
[203] S. Briais et al., “3D hardware canaries,” in Proc. Cryptogr. Hardw. Embed. Sys.,
E. Prouff and P. Schaumont, Eds. Berlin, Heidelberg: Springer, 2012, pp. 1–22.
https://doi.org/10.1007/978-3-642-33027-8_1
[204] J. Knechtel et al., “Towards secure composition of integrated circuits and
electronic systems: On the role of EDA,” in Proc. Des. Autom. Test Europe, 2020.
https://arxiv.org/abs/2001.09672
