RESCUE: Interdependent Challenges of Reliability, Security and Quality
  in Nanoelectronic Systems by Jenihhin, Maksim et al.
© 2019 IEEE.  Personal use of this material is permitted.  Permission from IEEE must be obtained for all 
other uses, in any current or future media, including reprinting/republishing this material for advertising or 
promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse 
of any copyrighted component of this work in other works. 
 RESCUE: Interdependent Challenges of Reliability, 
Security and Quality in Nanoelectronic Systems 
M. Jenihhin1, S. Hamdioui2, M. Sonza Reorda3, M. Krstic4, P. Langendörfer4, C. Sauer5, A. Klotz5, M. Huebner6, J. Nolte6,  
H. T.Vierhaus6, G. Selimis7, D. Alexandrescu8, M. Taouil2, G. J. Schrijen7, J. Raik1, L. Sterpone3, G. Squillero3, Z. Dyka4 
1Tallinn University of Technology, Estonia; 2Delft University of Technology, The Netherlands; 3Politecnico di Torino, Italy; 
 4IHP – Leibniz-Institut für innovative Mikroelektronik, Germany; 5Cadence Design Systems GmbH, Germany; 
 6BTU Cottbus-Senftenberg, Germany; 7Intrinsic ID B.V., The Netherlands; 8IROC Technologies, France 
maksim.jenihhin@taltech.ee   
Abstract— The recent trends for nanoelectronic computing 
systems include machine-to-machine communication in the era of 
Internet-of-Things (IoT) and autonomous systems, complex 
safety-critical applications, extreme miniaturization of 
implementation technologies and intensive interaction with the 
physical world. These set tough requirements on mutually 
dependent extra-functional design aspects. The H2020 MSCA ITN 
project RESCUE is focused on key challenges for reliability, 
security and quality, as well as related electronic design 
automation tools and methodologies. The objectives include both 
research advancements and cross-sectoral training of a new 
generation of interdisciplinary researchers. Notable 
interdisciplinary collaborative research results for the first half-
period include novel approaches for test generation, soft-error and 
transient faults vulnerability analysis, cross-layer fault-tolerance 
and error-resilience, functional safety validation, reliability 
assessment and run-time management, HW security  enhancement 
and initial implementation of these into holistic EDA tools.  
Keywords— reliability, security, test, fault tolerance, EDA tools.  
I. INTRODUCTION  
The long-lasting and steady technology scaling has enabled 
significant advances in functionality density and architectural 
solutions. These, in turn, lead to diverse application fields for 
integrated circuits from security RF-ID chips and biomedical 
implanted nanoelectronic devices to many-core processors for 
artificial intelligence, autonomous driving and cloud servers 
with billions of transistors integrated. Nanoelectronic systems, 
containing both hardware and embedded software components, 
are being combined today into the Internet of Things and Cyber-
Physical Systems (CPSs) and, ultimately, represent the physical 
backbone of our increasingly digitized world. 
More and more nanoelectronic systems are being deployed 
in life-critical application domains, such as healthcare, 
transportation, automotive and security, serving societal needs. 
Here, the impact and consequences of in-field failures, security 
attacks or hardware bugs and defects can be catastrophic. 
Reliability, quality and security cannot be treated anymore as 
standalone aspects and also have inherent tradeoffs with a set of 
application constraints, cost-efficiency, energy consumption, 
performance of the system and its safety requirements [2], [3], 
[35]. Due to today’s market driven applications and demands, 
the requirements are becoming a necessity even for consumer 
electronics such as smart phones and wearables. To underpin the 
next generation implementation technologies and rescue the 
steady growth of nanoelectronic systems’ functionality, new 
methodologies and electronic design automation (EDA) tools 
for interdisciplinary and multi-scale design, modelling, and 
analysis are urgently needed. 
As an example, the current technology used in the high-end 
smartphones include a processor with over 8.5 billion 
transistors. The 7nm TSMC FinFET technology of the A13 
Bionic, used to develop one of the most complex embedded 
Systems-on-Chip (SoCs) in the mobile communication domain 
of these days, includes a multi-core system and accelerators for 
artificial intelligence. Such hardware architecture is approaching 
the physical limits of technology and EDA scalability, highly 
vulnerable to faults and, therefore, needs specific mechanisms 
defined at design time to operate the SoC reliably, safely and 
securely. Today, these mechanisms go way beyond just a set of 
redundant gates or data paths. The online fault detection and 
repair has to be implemented very carefully in order to keep the 
performance and power requirements of the chip. Recent 
methods for this purpose are already a must in the state-of-the-
art chipsets. The next generation of chips will need even more 
specific and efficient realizations to build dependable and 
resilient hardware.  
The H2020 Marie Skłodowska-Curie Innovative Training 
Network action RESCUE [1] establishes a network for an 
interdisciplinary and cross-sectoral research and training [22] 
for future European engineers and researchers. Traditionally, the 
research and training in Europe for these highly interdependent 
challenges in nanoelectronic system design is fragmented and 
performed by scattered communities. The cross-sectoral 
consortium of RESCUE is well-balanced in terms of academic 
and industrial research facilities to tackle the reliability, security 
and quality challenges in a holistic manner. The industrial sector 
behind this initiative includes innovative and award-winning 
European SMEs from the areas of nano-electronics reliability 
and security - IROC Technologies and Intrinsic ID. The large 
companies on board are Cadence Design Systems, a global 
leader in electronic design automation, and Robert Bosch, the 
European automotive electronics flagship. The latter supports 
the ETN as a partner organization. As cutting-edge research 
institution, Leibniz-Institute IHP serves as a bridge for 
knowledge transfer between the sectors. The academic sector is 
represented by Delft, Brandenburg and Tallinn Universities of 
Technology, and Politecnico di Torino. RESCUE was launched 
on April 1, 2017 and will last for 4 years with the total budget 
3.76 MEUR, as a contribution by the European Commission.  
The rest of this paper is organized as follows: Section II 
outlines the objectives and concepts of the project, Section III 
This research was supported in part by project RESCUE funded from the EU
H2020 programme under the MSC grant agreement No.722325 and by EU
through the European Structural and Regional Development Funds. 
outlines the main interdisciplinary research results of the project 
and Section IV discusses the corresponding experimental 
framework. Finally, Section VI draws the conclusions. 
II. OBJECTIVES AND CONCEPTS OF THE PROJECT 
The research objective of the project is to address major 
technological and scientific challenges in an interdisciplinary 
area involving quality, reliability, security and EDA tools, which 
will enable and enhance the design and manufacturability of 
complex systems at smaller technology nodes. Here, within the 
scope of the project these terms are fixed to the following. 
Reliability of nanoelectronic systems is subject to threats during 
the system’s lifetime in the field such as wear-out or ageing 
defects and errors coming from the environment, e.g. radiation-
caused soft errors. Quality of nanoelectronic systems can be 
compromised by threats at time zero of the system’s life. These 
include design errors, manufacturing defects, nanometer-
technology process variation, etc. and are addressed by means 
of pre- and post-silicon functional validation, test and diagnosis. 
Security of nanoelectronic systems can be compromised by 
attacks on design IP (intellectual property), data asset and design 
functionality. The key actions here are secure design of 
hardware and embedded software parts and accurate security 
evaluation. EDA tools and methodologies for secure, correct and 
reliable nanoelectronics are developed with a holistic approach. 
As the second objective, the project provides early-stage 
researchers (ESRs) with intensive cross-sectoral training in the 
involved disciplines [22]. This is supported by dedicated events 
[8] and benefits from a portfolio of technical and transferable 
skills courses available in the network (e.g. [9]). The project is 
implemented by defining 15 detailed ESRs’ individual research 
projects while keeping both objectives under consideration. 
III. INTERDISCIPLINARY RESEARCH  
A distribution of the RESCUE project’s interdisciplinary 
collaborative research results for the first half-period is 
illustrated in Fig. 1. The size of the “bubbles” is proportional to 
the number of publications and preliminary results. The main 
accent in the first half-period was made on individual techniques 
e.g. for the reliability, quality and fault-tolerance aspects of 
electronic systems. Several interdisciplinary initiatives 
addressing the security aspect are work-in-progress with 
publishable results expected soon.  
A. Test generation and testability analysis  
General Purpose Graphics Processing Units (GPGPUs) have 
been considered in the frame of RESCUE because they represent 
an interesting case. Originally, they were introduced for 
applications, such as graphics and gaming, where reliability is a 
minor concern. In the following years, they started to be adopted 
for High Performance Computing (HPC) and, more recently, for 
safety-critical applications in the automotive domain. On the 
other side, they normally exploit advanced semiconductor 
technologies, which are known to be more prone to faults and to 
critical effects, such as aging. Hence, solutions to make them 
reliable enough for these applications are urgently needed.  
The research work done in RESCUE concerning GPGPUs 
focused, first, on developing solutions able to effectively detect 
possible permanent faults arising during the operational life 
[11], [41], [42]. The proposed techniques belong to the general 
category of functional ones (Software-based Self-test) and were 
evaluated resorting to an existing GPGPU model (FlexGrip) 
which has been significantly improved and expanded in the 
frame of the project [43]. Thanks to the availability of the 
improved FlexGrip model, for the first time in the literature we 
have been able to quantitatively assess the effectiveness of a test 
solution on a GPGPU. Secondly, a joint work focused on the 
automatic identification of the functionally untestable faults 
inside a GPGPU [46]. This step is crucial to correctly estimate 
the fault coverage achieved by any test method, and allows to 
reduce the cost for functional fault simulation. A similar activity 
was also performed targeting more conventional RISC 
processors [23], [28], [33]. Finally, RESCUE researchers 
analyzed the impact of permanent and transient faults when 
some typical applications running on GPGPUs are considered 
[25], also evaluating the impact on reliability and performance 
stemming from different software encoding styles [40]. 
Fig 1. Distribution of the RESCUE project’s interdisciplinary collaborative research results for the first half-period 
Security
Quality 
Reliability 
Multi-
dimensional 
verification 
PUFs 
Reliability
● academia-led 
● industry-led 
zamia 
CAD 
Soft Errors 
vulnerability 
analysis: 
GPUs, FPGAs, 
memory 
 Test generation  
and testability 
analysis: 
GPUs / CPUs 
Cross-layer 
fault-tolerance 
and error-
resilience 
Machine 
Learning for  
failure rate  
analysis 
Functional  
Safety Validation 
(ISO 26262) 
RSNs test, 
validation, 
verification,  
ageing mitigation  
(IEEE 1687) 
Aging 
analysis in 
memory sys. 
(BTI)  FinFET  
SRAMs: 
defects, DFT, 
online test 
AI for HW 
security
Laser fault 
injections
Timing 
side-
channels
Auto-
SoC
B. Soft- Error and Transient Faults vulnerability analysis  
Among other reliability threats, transient faults, such as 
Single-Event Upsets (SEUs) in sequential/state logic and Single-
Event Transients (SETs) in combinatorial logic, are known to 
contribute significantly to the overall failure rate of the system, 
possibly exceeding the set reliability targets. As an example, 
standard flip-flops and SRAM memories, manufactured in 
relatively recent technologies (down to the latest CMOS bulk 
processes) exhibit error rates of hundreds of FITs (events per a 
billion working hours per megabit). Complex circuits using such 
cells can easily overshoot the 10 FIT target mandated by the ISO 
26262 for an automotive ASIL D application. 
RESCUE proposes methods [12], [13], [14] to study circuits’ 
sensitivity to transient faults and single events mainly caused by 
radiation particle induced faults occurring at the circuit layout 
level and impacting the circuit’s cell behavior and the 
subsequent propagation into the system, provoking observable 
failures at the system level.  
Characterization of radiation-induced soft errors and the 
reliability analysis on advanced integrated circuits such as 
GPGPUs is a key pillar to individuate new techniques for the 
modeling of SEUs and SETs on circuit. A suitable model to cope 
with the investigation in harsh environments has been presented 
in [43]. On the other side, due to the technology scaling, lower 
supply voltages and higher operational frequencies, SETs are 
becoming a big concern also to specific resources such as the 
clock distribution network (CDN) or the reset circuitry. [54] 
proposes a comprehensive framework for the analysis of the 
impact of CDN SETs to the functional behavior of a circuit. 
The reliability assessment process is usually accomplished 
with different types of fault injection methods like exhaustive 
and random. The first one is obviously ultimate in terms of 
accuracy but very cumbersome in terms of resources, time, EDA 
licenses and so on, making this approach unfeasible on medium 
and large circuits. The random fault injection method provides a 
solution to avoid unreasonable costs while allowing for accuracy 
(or statistical significance) on the proposed scope using 
mathematical and statistical methods. Along with these, 
RESCUE researchers also explore the use of Machine Learning 
techniques [31], [55], [56], [57], [57] for reliability and 
functional safety evaluation, allowing fast and accurate fault, 
error and failure metric extraction and evaluation. 
C. Cross-layer fault tolerance and error resilience  
Concerning fault tolerance in current and future hardware, 
our research focuses on fault detection and complementary fault 
repair mechanisms. Fault handling at lower levels close to the 
area where the error occurred allows to avoid high, often 
unacceptable, latencies implied if decisions are made by a 
higher-level component on chip. On the other hand, modules for 
error detection and correction often can do more complex 
analysis and even track a “history” of faults and methods to 
repair them. Methods using Artificial Intelligence [4] can be also 
envisioned and are under our investigation. A higher-level 
component receiving information from low-level monitoring 
elements is able to decide on a more abstract level the behavior 
of the chip and informs the real-time Operating System about 
the status of the underlying hardware. In RESCUE, we develop 
a “meet in the middle” approach [52] where low-level 
monitoring and correction is accomplished with a high-level 
fault management. This addresses two major goals, i.e. a low-
latency reaction to faults and a more complex and flexible fault 
management, considering in future also AI algorithms.  
The important aspect of cross-layer fault tolerance is effective 
sensing and decision making about the potential system 
reconfiguration based on the actual environmental and intrinsic 
changes. In RESCUE, we are working on the development of 
novel sensing mechanisms for radiation monitoring. The 
specific characteristic of this approach is lies in the usage of the 
available memory resources on the chip, that are functionally 
utilized also for the SEU monitoring [38], [39], [53]. These 
monitors could be integrated with the other monitor types, i.e. 
fault monitors, ageing (such as Bias Temperature Instability - 
BTI or Hot Carrier Injection – HCI phenomena), temperature 
sensors, and used for intelligent system management.  
D. Functional safety validation  
The increasing usage of electronic systems in the automotive 
domain and their growing complexity due to applications such 
as autonomous driving causes a shift in the traditional design 
flows and pushing compliance to standards such as ISO26262 
down to the semiconductor chain. With this, functional safety 
needs to become a first-class citizen throughout the full design 
flow. This concerns not only the safe function of the system in 
the field, but also the design and software tools involved into its 
development. Our proposed vendor-independent methodology 
helps improving the confidence in fault analysis tools by 
combining the strengths of Automatic Test Pattern generators 
(ATPGs), Formal methods and Fault Injection (FI) simulation to 
automatically verify tools and detect any errors in their fault 
classification [20], [48], [50]. 
Critical in the design process is the efficient evaluation of the 
design’s robustness in coping with random hardware failures, 
including all its aspects in digital, analog, or software domains. 
In early stages of the flow, techniques for supporting architects 
and reliability experts in performing FMECA (Failure Mode, 
Effects and Criticality Analysis) are introduced, as well as for 
formally proving that certain critical states are never reached 
[19]. In later stages of the flow, assumptions and estimations 
about the systems function in the presence of faults need to be 
verified, requiring fault injection campaigns. Depending on 
underlying fault models and on the design characteristics these 
campaigns typically run 100s of 1000s of simulations at gate 
level in the digital domain. With millions of design components 
susceptible for random faults and elaborated verification 
environments, this requires significant efforts and time. Our 
work on dynamic slicing aims at pruned fault lists and smarter 
injection to save some of these efforts [49], [51]. How to extend 
FuSa (Functional Safety) verification in terms of its fault models 
as well as into the analog domain are also active areas of 
research in the RESCUE project.  
E. Reliability assessment and run-time management 
An interesting example showing how much the different 
aspects are correlated in current design flows is represented by 
Reconfigurable Scan Networks (RSNs), such as those supported 
by the IEEE1149 and IEEE1687 standards. These circuit 
structures are introduced to ease and optimize the access to 
internal registers used to calibrate, debug, and test the circuit. 
Hence, they have an extra-functional purpose. However, they 
may also be prone to design errors and manufacturing faults. For 
this reason, RESCUE early-stage researchers are working 
towards the development of effective solutions to test [15], [16], 
[17], [30], [44], validate [29], [47] and diagnose faults [45] in 
RSNs, which are suitable to be integrated into future EDA tools.  
Moreover, since they allow accessing the inside of circuits, they 
must be protected against unwanted accesses, thus raising 
concerns about their security. In RESCUE, we have also studied 
the impact of BTI aging [36] on these critical infrastructures 
often used to organize access to embedded instruments and 
system health management.  
Typically, to address the time-dependent degradation 
(aging), dedicated hardware mitigation schemes are applied. In 
another direction of our current work, we are also using existing 
on-chip resources to mitigate the memory BTI-induced aging, as 
the dominant phenomenon for the current technologies. As the 
baseline, we rely on our previous results demonstrated that by 
running programs on the processor design that the unbalanced 
logic paths can be rejuvenated using software [7]. In the context 
of this project, we extend this approach by using the processor 
to mitigate (parts of) the memory system. The idea is to embed 
additional instructions to the program to ensure a balanced stress 
of different parts of the memory. Our preliminary results show 
that the address decoder can be mitigated very well [24]. 
As SRAM memory dominates the chip area it is critical to 
ensure that this functions properly throughout its lifetime. To 
increase the fault coverage, we are looking at new approaches to 
model the new defects of the Fin Field-Effect Transistor 
(FinFET) technology and analyze their impact on both quality 
and reliability. To realize this, we are working on a methodology 
based on Technology Computer-Aided Design (TCAD) that can 
accurately capture the behavior of unique FinFET 
manufacturing defects in FinFET SRAMs. Each defect is 
modelled by altering the physical structure of FinFET devices to 
include unwanted characteristics, such as cracks on the channel 
or bended fins. These devices are then simulated for electrical 
analysis and their behavior on the cells are observed. This 
characterized behavior is used in the project for development of 
novel specialized Design for Testability (DfT) and mitigation 
schemes for FinFET memories [26]. In addition to that, we are 
also working on efficient (online) test solutions. To monitor the 
health status of an SRAM, we investigated efficient ways to 
monitor the status of cells using on-chip current sensors [10], 
[27]. The idea is to compare the response of different cells with 
each other and from there identify defective or weak cells. This 
allows for testing all defects simultaneously while using a 
limited number of operations only.  
F. Hardware security analysis and enhancement  
Due to the nature of applications such as critical 
infrastructure and the Internet of Things, side channel analysis 
attacks are becoming a serious threat. This is due to the fact that 
devices are deployed in the field without any protection means, 
i.e. they can be stolen and attacked using side channel analysis 
attacks in a lab. Side channel attacks (SCAs) take advantage 
from the fact that the behavior of crypto implementations can be 
observed and provides hints that simplify revealing keys. So 
new means to prevent or at least to increase the effort to run 
successful SCAs are needed. 
A specific type of SCA are fault injection attacks. With fault 
injection, the attacker’s objective is to change a critical value or 
to change the flow of a program. In order to cope with those 
attacks the behavior of the devices under attack needs to be 
understood. This is the reason why we are investigating [18] 
physical laser-based fault injection attacks in the IHP 
technologies available in the RESCUE network. For test 
structures we could show that fault injections switching a single 
transistor at least in the 250nm technology are successful and 
repeatable. This means changing states of identified registers 
that allow/prevent access to sensitive data such as keys can be 
changed by an attacker. New elements are under development 
that are aimed to prevent such attacks from being successful. 
Experiments are planned for the near future. Moreover, in 
RESCUE we follow an AI-based strategy against fault injection 
attacks. We are developing a new strategy based on neural 
networks which can detect faults in the program flow of critical 
functions such as the crypto engines. The neural network is 
trained with non-faulty traces only and hence has the potential 
to not only detect existing fault attacks but also future attacks. 
Apart the active SCA fault injection attacks, we investigate 
the passive SCAs as well. In these attacks, the attacker passively 
listens in one of the side channels (e.g. time or power) in the 
hope that some sensitive data leaks. We have developed a 
verification framework for timing SCA. SCA data leakage has 
been identified using the framework and countermeasures have 
been taken [34]. At the moment, we validate our framework by 
investigating attacks on further hardware designs and there is a 
work in progress to introduce extra side channel attacks (e.g. 
power) to the framework. 
Finally, we are investigating secure and low-cost ways of 
storing keys. In modern systems, the use of non-volatile 
memories for key storage gives room for attacks, since keys are 
always available in memory. One of the solutions to tackle this 
issue is Physical Unclonable Functions (PUFs) [6]. With PUFs 
the random uncontrollable manufacturing parameters of the 
device can be used to create a unique identifier and a 
cryptographic key root. However, due to technology scaling, 
there is a need to validate PUF designs under these emerging 
technologies. Over the last years, new technologies with different 
parameters and structures are proposed and manufactured, such 
as FinFET. We have developed a simulation framework and an 
analytical mathematical model for FinFET SRAM PUFs in 
order to be able to investigate reliability and entropy 
performance. First results are expected to be published soon.  
IV. EXPERIMENTAL FRAMEWORK 
A. Holistic EDA Framework 
One of the goals of the RESCUE project is to establish 
holistic EDA methodologies along with corresponding tool 
flows for the interdependent design aspects of reliability, 
security and quality [32] (see Fig. 2). To understand the 
interference of functional and extra-functional design aspects 
the project has performed a comprehensive study of the state of 
the art [35], [21]. The cutting-edge academic research ideas are 
planned to be first implemented into experimental frameworks 
and have a potential to be integrated into standard industrial tool 
design flows from Cadence or reliability and functional safety-
oriented EDA tools from IROC. zamiaCAD [5] is one of the 
academic open-source experimental platforms supported by 
several early-stage researchers. In practice, EDA toolsets and 
methodologies can be application specific targeting at systems’ 
domains such as autonomous systems [37] (including the 
automotive domain and robotics), space applications, IoT edge 
devices, security-enabling HW, fault management 
infrastructures (IJTAG/RSNs), specific architectures (NoCs, 
many-cores, HMPSoCs), etc.  
Several key components are needed for cross-layer design 
methodologies that address multi-level circuit design flows. 
Firstly, extra-functional information, such as technology fault 
data, environment-induced events rates, etc., must be generated, 
consumed and exchanged transparently and safely. The project 
uses and significantly extends the Reliability Information 
Interchange Format (RIIF) to support the new design 
paradigms. Secondly, designing and testing many ideas and 
principles can benefit from “big data” information such as fault 
injection information and circuit reliability data. However, this 
is not always easy to obtain or generate. As a work in progress, 
RESCUE aims at generating and providing to the community 
large databases with the results of fault simulation campaigns 
and reliability analysis of complex circuits that can help further 
cross-layer design techniques. Lastly, the adoption of 
community-driven open-source formats, tools and 
methodologies is a fundamental principle of the project. 
B. Open-Source Automotive Benchmark Auto-SoC 
The development of Autonomous Vehicles applications, 
where a system failure could cause life-threatening situations, 
entails state-of-the-art challenges on different aspects of system 
development. Concerns with reliability, security, quality, and 
compliance to safety standards are of high priority. This scenario 
requires the adoption of new techniques and methodologies that 
will facilitate the development and verification of these 
applications. Different organizations are working to close the 
technological gap for Autonomous Vehicles. However, in order 
to assess the quality of the proposed solutions, it is necessary to 
compare the results against what is applied in the industry. 
Nowadays, development life-cycles and verification techniques 
applied by industry are not disclosed, and each big player in the 
automotive sector has its own methodologies and tools. In 
addition, automotive hardware and software solutions are 
seldomly available. This is a challenge for researchers that are 
not able to verify their work on representative designs or to 
quantitatively assess the quality of their results in a comparable 
manner. For that reason, there is a high demand for a suite of 
open-source benchmarks that would enable research on the 
different aspects of Automotive applications development.  
For such a benchmark suite to be considered a valid solution, 
it should be characterized as: 
 Representative: Based on the requirements of real-world 
systems; 
 Comparable: Must allow comparability between 
different proposed methodologies and results;  
 Open: All the components should be open-source 
allowing the exploration of bottlenecks; 
 Modular: Consent for future growth and modification on 
components. 
To gather the requirements for representative Automotive 
SoCs benchmarks, in frames of the RESCUE project we have 
analyzed several commercial solutions, in cooperation with 
some major players in the area. The analysis considered the main 
characteristics of commercial automotive SoCs, to identify key 
aspects that are common to all, and therefore, should be 
implemented in a possible new benchmark suite. The evaluation 
was focused on: (1) Architecture: common characteristics (e.g. 
CPUs, memories, automotive protocols); (2) Safety: what 
components of the SoCs are considered for functional safety 
compliance and what safety mechanisms are implemented; (3) 
Security: what security features are available; (4) Other: 
common available peripherals (e.g. communication networks, 
GPU, Audio/Video DSPs). 
Based on this evaluation, the basic functionalities and 
architecture were defined for a benchmark suite named 
Automotive SoC (AutoSoC), corresponding to a SoC hardware 
based on the OR1200 CPU and including application-specific, 
memory and peripheral blocks. The RT-level synthesizable 
Verilog model of the hardware is available in a number of 
configurations, including different safety mechanisms to 
increase reliability, such as LockStep for the CPU and ECCs for 
the memories and a security block. Remarkably, the suite also 
includes some software to be run on the benchmark hardware, 
including a Linux Operating System version (with drivers for 
the peripherals) as well as a few representative applications. 
C. Chip Demonstrator 
Not all novel approaches for design reliability and quality 
assessment and enhancement can be accurately evaluated using 
simulation-in-software. As an early work in progress, joint 
activities of the project partners are pursuing also the design of 
a common silicon demonstrator. The demonstrator shall include 
the reliability, security and quality aware hardware and software 
IPs from the consortium, but also the contribution in terms of 
design flow improvements, as well as test approach 
enhancements. It may take advantage of the IHP facilities and 
can provide involved ESRs with practical experience of a real 
nanoelectronic system implementation flow.  
V. CONCLUSIONS 
H2020 MSCA ITN project RESCUE is focused on key 
challenges for reliability, security and quality, as well as related 
electronic design automation tools and methodologies. The first 
collaborative research results include a set of very promising 
approaches. The next step is to integrate these into a holistic 
EDA tools flow, open-source benchmark suits and a physical 
chip demonstrator. 
REFERENCES 
[1] RESCUE ETN website. [http://rescue-etn.eu/] [2] I. Verbauwhede, "Security Adds an Extra Dimension to IC Design: Future IC Design Must Focus on Security in Addition to Low Power and Energy," 
IEEE Solid-State Circuits Magazine, v.9, no.4, pp. 41-45, 2017 [3] W. Chen, S. Ray, J. Bhadra, M. Abadir and L. C. Wang, "Challenges and Trends in Modern SoC Design Verification," in IEEE Design & Test, vol. 34, no. 5, pp. 7-22, Oct. 2017 [4] O. Guzman, M. Huebner, “Runtime Adaptive Cache for the LEON3 Processor”, ARC 2018, Santorini, Greece, May 2-4, 2018, 343 – 354. [5] A. Tšepurov, G. Bartsch, R. Dorsch, M. Jenihhin, J. Raik and V. Tihhomirov, "A scalable model based RTL framework zamiaCAD for static analysis," IEEE/IFIP VLSI-SoC, Santa Cruz, USA, 2012, 171-176. 
Fig. 2. RESCUE holistic approach to EDA tools and methodologies 
[6] Maes, R., Verbauwhede, I. (2010). “Physically unclonable functions: A study on the state of the art and future research directions”. In Towards Hardware-Intrinsic Security (pp. 3-37). Springer, Berlin, Heidelberg. [7] F. Pellerey, M. Jenihhin, G. Squillero, J. Raik, M. Sonza Reorda, V. Tihhomirov, R. Ubar, "Rejuvenation of NBTI-Impacted Processors Using Evolutionary Generation of Assembler Programs," 2016 IEEE 25th Asian 
Test Symposium (ATS), Hiroshima, 2016, pp. 304-309. [8] BELAS: Biannual European - Latin American Summer School on Design, Test and Reliability [http://belas-event.org/] [9] Cadence Academic Network: [http://www.cadence.com/] 
RESCUE research results (2018-2019): [10] G. Medeiros, L. Bolzani Poehls, M. Taouil, F. Luis Vargas, S. Hamdioui, “A defect-oriented test approach using on-Chip current sensors for resistive defects in FinFET SRAMs,” Microelectronics Reliability, Elsevier, vol. 88-90, pp. 355–359, Sep 2018.  [11] B. Du, J. E. R. Condia, M. Sonza Reorda and L. Sterpone, "About the functional test of the GPGPU scheduler," IEEE IOLTS, 2018, pp. 85-90.  [12] T. Lange, M. Glorieux, A. Evans, A-D. In, D. Alexandrescu, C. Boatella-Polo, C. Urbina Ortega, V. Ferlet-Cavrois, M. Tali, R. Garcı́a Alı́a, “Single Event Characterization of a Xilinx  UltraScale+ MP-SoC FPGA,” 2018 ESA/ESTEC Space FPGA Users Workshop (SEFUW’18).  [13] L. Sterpone, S. Azimi, L. Bozzoli, B. Du, T. Lange, M. Glorieux, D. Alexandrescu, C. Boatella Polo, D. Merodio Codinachs, "A Novel Error Rate Estimation Approach for UltraScale+ SRAM-based FPGAs," 2018 NASA/ESA AHS 2018, Edinburgh, United Kingdom, 2018, pp. 120-126.  [14] M. Glorieux, A. Evans, T. Lange, A-Duong In, D. Alexandrescu, C. Boatella-Polo, R. Garcı́a Alı́a, M. Tali, C. Urbina Ortega, M. Kastriotou, P. Fernández-Martı́nez, V. Ferlet-Cavrois, "Single-Event Characterization of Xilinx UltraScale+ r MPSOC under Standard and Ultra-High Energy Heavy-Ion Irradiation," 2018 IEEE Radiation Effects Data WS (REDW) [15] R. Cantoro, A. Damljanovic, M. Sonza Reorda and G. Squillero, "A Semi-Formal Technique to Generate Effective Test Sequences for Reconfigurable Scan Networks,“ IEEE ITC-Asia, 2018, pp. 55-60.  [16] R. Cantoro ; A. Damljanovic ; M. Sonza Reorda ; G. Squillero, “A New Technique to Generate Test Sequences for Reconfigurable Scan Networks”, 2018 IEEE International Test Conference (ITC) [17] R. Cantoro, A. Damljanovic, M. Sonza Reorda and G. Squillero, Comparing different approaches to the test of Reconfigurable Scan Networks, 2018 3rd Int. Test Standards Application Workshop (TESTA)  [18] D. Petryk, Z. Dyka, P. Langendörfer. “Fault Injections: Most Often Used Setups”. 29. Krypto-Tag, Renningen, September 6-7, 2018  [19] F. Augusto da Silva, A. C. Bagbaba, S. Hamdioui and C. Sauer, "Use of Formal Methods for verification and optimization of Fault Lists in the scope of ISO26262," 2018 Design and Verification Conference and Exhibition (DVCon) Europe, Munich, Germany, 2018.  [20] A. C. Bagbaba, F. Augusto da Silva, C. Sauer, "Improving the Confidence Level in Functional Safety Simulation Tools for ISO 26262," 2018 Design and Verification Conference and Exhibition (DVCon) Europe, 2018.  [21] M. Jenihhin, X. Lai, T. Ghasempouri, J. Raik, “Towards Multidimensional Verification: Where Functional Meets Non-Functional”, IEEE NorCAS Conference, Tallinn, October 2018, pp 1-6.  [22] H. T. Vierhaus, M. Jenihhin and M. Sonza Reorda, “RESCUE: Cross-Sectoral PhD Training Concept for Interdependent Reliability, Security and Quality”, 12th IEEE EWME, Braunschweig, 2018, pp. 1-6.  [23] A. S. Oyeniran, R. Ubar, M. Jenihhin, C. C. Gürsoy and J. Raik, "Mixed-level identification of fault redundancy in microprocessors," 2019 IEEE Latin American Test Symposium (LATS), Santiago, Chile, 2019, pp. 1-6.  [24] D. H. P. Kraak, C.C. Gürsoy, I.O. Agbo, M. Taouil, M. Jenihhin, J. Raik and S. Hamdioui, "Software-Based Mitigation for Memory Address Decoder Aging," 2019 IEEE LATS, Santiago, Chile, 2019, pp. 1-6.  [25] B. Du, J. E. Rodriguez Condia, M. Sonza Reorda and L. Sterpone, "On the evaluation of SEU effects in GPGPUs," 2019 IEEE Latin American Test Symposium (LATS), Santiago, Chile, 2019, pp. 1-6.  [26] G. Medeiros et al., "A DFT Scheme to Improve Coverage of Hard-to-Detect Faults in FinFET SRAMs," 2019 Design, Automation & Test in Europe Conference & Exhibition (DATE), Grenoble, France, 2020 [27] G. Medeiros, M. Taouil, M. Fieback, L. Bolzani Poehls, S. Hamdioui, “DFT Scheme for Hard-to-Detect Faultsin FinFET SRAMs”, 2019 24th IEEE European Test Symposium (ETS). [28] A. S. Oyeniran, R. Ubar, M. Jenihhin, C.C. Gursoy, J. Raik, “High-Level Combined Deterministic and Pseudo-exhuastive Test Generation for RISC Processors”, 2019 24th IEEE European Test Symposium (ETS).  [29] A. Damljanovic, A. Jutman, G. Squillero, A. Tsertov, “Post-Silicon Validation of IEEE 1687 Reconfigurable Scan Networks”, 2019 24th IEEE European Test Symposium (ETS). [30] R. Cantoro, A. Damljanovic, M. Sonza Reorda and G. Squillero, “New techniques for reducing the duration of Reconfigurable Scan Network test”, 2019, Journal of Circuits, Systems and Computers Vol. 28, No.1 [31] T. Lange, A. Balakrishnan, M. Glorieux, D. Alexandrescu, L. Sterpone, “Machine Learning to Tackle the Challenges of Transient and Soft Errors in Complex Circuits”, SELSE-15: The 15th Workshop on Silicon Errors in Logic – System Effects, 27-28 March 2019 [32] C.C.Gürsoy, G.Medeiros, J.Chen, N.George, J.E.Rodriguez Condia, T.Lange, A.Damljanovic, A.Balakrishnan, R.Segabinazzi Ferreira, X.Lai, S.Masoumian, D.Petryk, T.Koylu, F.da Silva, A.Bagbaba, S.Hamdioui, M.Taouil, M.Krstic, P.Langendörfer, Z.Dyka, M.Huebner, J.Nolte, H.T.Vierhaus, M.Sonza Reorda, G.Squillero, L.Sterpone, J.Raik, 
D.Alexandrescu, M.Glorieux, G.Selimis, G.J.Schrijen, A.Klotz, C.Sauer, M.Jenihhin, “RESCUE EDA Toolset for Interdependent Aspects of Reliability, Security and Quality in Nanoelectronic Systems Design”, University Booth at Design, Automation & Test in Europe Conference & Exhibition (DATE UB), Florence, Italy, 2019. [33] C. Gursoy, M. Jenihhin, A.S. Oyeniran, D. Piumatti, J. Raik, M. Sonza Reorda, R. Ubar, “New categories of Safe Faults in a processor-based Embedded System,” 22 nd Int. Symposium on Design and Diagnostics of Electronic Circuits and Systems (DDECS), Cluj-Napoca, Romania, 2019. [34] X. Lai, M. Jenihhin, J. Raik, K. Paul, “PASCAL: Timing SCA Resistant Design and Verification Flow”, IOLTS 2019. [35] X. Lai, A. Balakrishnan, T. Lange, M. Jenihhin, T. Ghasempouri, J. Raik, D. Alexandrescu, “Understanding multidimensional verification: Where functional meets non-functional”, Microprocessors and Microsystems, Volume 71, 2019, 102867. [36] A. Damljanovic, C.C. Gursoy, M. Jenihhin, G. Squillero, “On NBTI-induced Aging Analysis in IEEE 1687 Reconfigurable Scan Networks”, VLSI-SoC 2019, pp. 1-6. [37] M. Jenihhin, M. Sonza Reorda, A. Balakrishnan, D. Alexandrescu, “Challenges of Reliability Assessment and Enhancement in Autonomous Systems” IEEE DFT, Noordwijk, Netherlands, 2019, pp. 1-6. [38] J.-C. Chen, M. Andjelkovic, A. Simevski, Y.-Q. Li, P. Skoncej, M. Krstic, “Design of SRAM-based Low-Cost SEU Monitor for Self-Adaptive Multiprocessing Systems”, Euromicro DSD, Greece, 2019.  [39] M. Andjelkovic, M. Veleski, J.-C. Chen, A. Simevski, M. Krstic, “A Particle Detector Based on Pulse Stretching Inverter Chain”, 26th IEEE Int. Conf. on Electronics, Circuits and Systems (ICECS 2019). [40] B. Du, J. E. R. Condia, M. Sonza Reorda, "An extended model to support detailed GPGPU reliability analysis", IEEE DTIS 2019, pp. 1-6. [41] Di Carlo Stefano, Rodriguez Condia, Josie E.; Sonza Reorda, M., "On the in-field test of the GPGPU scheduler memory", IEEE DDECS, 2019. [42] Josie E. Rodriguez Condia, M.Sonza Reorda, "Testing permanent faults in pipeline registers of GPGPUs: A multi-kernel approach", 25th IEEE Int. Symp. on On-Line Testing and Robust System Design (IOLTS), 2019. [43] B. Du, Josie E. Rodriguez Condia, M. Sonza Reorda, L. Sterpone, "An open source embedded-GPGPU model for the accurate analysis and mitigation of SEU effects", 30th RADECS, Montpellier, 2019. [44] R. Cantoro, A. Damljanovic, M. Sonza Reorda, G. Squillero, “An Enhanced Evolutionary Technique for the Generation of Compact Reconfigurable Scan-Network Tests”, J. of Circuits, Systems and Computers, June 2019. [45] R. Cantoro, A. Damljanovic, M. Sonza Reorda, G. Squillero, “A Novel Sequence Generation Approach to Diagnose Faults in Reconfigurable Scan Networks”, IEEE Transaction on Computers, 2019. [46] Rodriguez Condia, Josie E.; Da Silva, F.A.; Hamdioui S.; Sauer C. and Sonza Reorda, M., "Untestable faults identification in GPGPUs for safety-critical applications", IEEE ICECS 2019. [47] A. Damljanovic, A. Jutman, M. Portolan, E. Sanchez, G. Squillero, A. Tsertov, “Simulation-based Equivalence Checking between IEEE 1687 ICL and RTL”, ITC 2019. [48] F. Augusto da Silva, A. C. Bagbaba, S. Hamdioui and C. Sauer, "Combining Fault Analysis Tools for ISO26262 Functional Safety Verification," IEEE Asia Test Symposium (ATS), Dec. 2019. [49] A.C.Bagbaba, M.Jenihhin, J.Raik, C.Sauer, “Efficient Fault Injection based on HDL Slicing Technique”, IEEE IOLTS, 2019. [50] F. Augusto da Silva, A. C. Bagbaba, S. Hamdioui and C. Sauer, "Efficient Methodology for ISO26262 Functional Safety Verification," IEEE IOLTS, 2019. [51] A. C. Bagbaba, M. Jenihhin, J. Raik and C. Sauer, "Accelerating Transient Fault Injection Campaigns by using Dynamic HDL Slicing, " IEEE Nordic Circuits and Systems Conference (NorCAS), October 2019 [52] R. Segabinazzi Ferreira and J. Nolte, “Low latency reconfiguration mechanism for fine-grained processor internal functional units,” in LATS 2019 - 20th IEEE Latin American Test Symposium, 2019 [53] R. Segabinazzi Ferreira, N. George, J. Chen, M. Hübner, M. Krstic, J. Nolte, and H. T. Vierhaus, “Configurable Fault Tolerant Circuits and System Level Integration for Self-Awareness,” in 2019 22nd Euromicro Conference on Digital System Design (DSD) (WiP Session), 2019. [54] T. Lange, M. Glorieux, D. Alexandrescu, L. Sterpone, "Functional Failure Rate Due to Single-Event Transients in Clock Distribution Networks," 2019 Design Technology of Integrated Systems In Nanoscale Era (DTIS)  [55] T. Lange, A. Balakrishnan, M. Glorieux, D. Alexandrescu, L. Sterpone, "On the Estimation of Complex Circuits Functional Failure Rate by Machine Learning Techniques," 2019, 49th IEEE/IFIP Int. Conference on Dependable Systems and Networks – Supplemental Volume (DSN-S). [56] A. Balakrishnan, T. Lange, M. Glorieux, D. Alexandrescu, M. Jenihhin. ”Modeling Gate-Level Abstraction Hierarchy Using Graph Convolutional Neural Networks to Predict Functional De-Rating Factors”. In NASA/ESA Conf. on Adaptive Hardware and Systems (AHS), 2019.  [57] T. Lange, A. Balakrishnan, D. Alexandrescu, M. Glorieux, and L. Sterpone, "Machine Learning To Tackle the Challenges of Transient and Soft Errors in Complex Circuits," IEEE IOLTS, 2019. [58] A. Balakrishnan, T. Lange, M. Glorieux, D. Alexandrescu, M. Jenihhin, “The Validation of Graph Model-Based, Gate-level Low-Dimensional Feature Data for Machine Learning Applications”, Nordic Circuits and Systems Conf. (NorCAS 2019).  
