Skip to main content

Thwarting Replication Attack against Memristor-Based Neuromorphic Computing System

Publication ,  Journal Article
Yang, C; Liu, B; Li, H; Chen, Y; Barnell, M; Wu, Q; Wen, W; Rajendran, J
Published in: IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems
October 1, 2020

Neuromorphic architectures are widely used in many applications for advanced data processing and often implement proprietary algorithms. However, in an adversarial scenario, such systems may face elaborate security attacks including learning attack. In this article, we prevent an attacker with physical access from learning the proprietary algorithm implemented by the neuromorphic hardware. For this purpose, we leverage the obsolescence effect in memristors to judiciously reduce the accuracy of outputs for any unauthorized user. For a legitimate user, we regulate the obsolescence effect, thereby maintaining the accuracy of outputs in a suitable range. We extensively examine the feasibility of our proposed method with four datasets. We experiment under different settings, such as activation functions and constraints such as process variations, and estimate the calibration overhead. The security versus cost and performance versus resistance range tradeoffs for different applications are also analyzed. We then prove that the defense is still valid even if the attacker has the prior knowledge of the defense mechanism. Overall, our methodology is compatible with mainstream classification applications, memristor devices, and security and performance constraints.

Duke Scholars

Published In

IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems

DOI

EISSN

1937-4151

ISSN

0278-0070

Publication Date

October 1, 2020

Volume

39

Issue

10

Start / End Page

2192 / 2205

Related Subject Headings

  • Computer Hardware & Architecture
  • 4607 Graphics, augmented reality and games
  • 4009 Electronics, sensors and digital hardware
  • 1006 Computer Hardware
  • 0906 Electrical and Electronic Engineering
 

Citation

APA
Chicago
ICMJE
MLA
NLM
Yang, C., Liu, B., Li, H., Chen, Y., Barnell, M., Wu, Q., … Rajendran, J. (2020). Thwarting Replication Attack against Memristor-Based Neuromorphic Computing System. IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems, 39(10), 2192–2205. https://doi.org/10.1109/TCAD.2019.2937817
Yang, C., B. Liu, H. Li, Y. Chen, M. Barnell, Q. Wu, W. Wen, and J. Rajendran. “Thwarting Replication Attack against Memristor-Based Neuromorphic Computing System.” IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems 39, no. 10 (October 1, 2020): 2192–2205. https://doi.org/10.1109/TCAD.2019.2937817.
Yang C, Liu B, Li H, Chen Y, Barnell M, Wu Q, et al. Thwarting Replication Attack against Memristor-Based Neuromorphic Computing System. IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems. 2020 Oct 1;39(10):2192–205.
Yang, C., et al. “Thwarting Replication Attack against Memristor-Based Neuromorphic Computing System.” IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems, vol. 39, no. 10, Oct. 2020, pp. 2192–205. Scopus, doi:10.1109/TCAD.2019.2937817.
Yang C, Liu B, Li H, Chen Y, Barnell M, Wu Q, Wen W, Rajendran J. Thwarting Replication Attack against Memristor-Based Neuromorphic Computing System. IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems. 2020 Oct 1;39(10):2192–2205.

Published In

IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems

DOI

EISSN

1937-4151

ISSN

0278-0070

Publication Date

October 1, 2020

Volume

39

Issue

10

Start / End Page

2192 / 2205

Related Subject Headings

  • Computer Hardware & Architecture
  • 4607 Graphics, augmented reality and games
  • 4009 Electronics, sensors and digital hardware
  • 1006 Computer Hardware
  • 0906 Electrical and Electronic Engineering