Vulnerability Information Sharing Platform for Securing Hardware Supply Chains

Kento Hasegawa; Katsutoshi Hanahara; Hiroshi Sugisaki; Minoru Kozu; Kazuhide Fukushima; Yosuke Murakami; Shinsaku Kiyomoto

doi:10.5220/0012351800003648

Vulnerability Information Sharing Platform for Securing Hardware Supply Chains

Kento Hasegawa, Katsutoshi Hanahara, Hiroshi Sugisaki, Minoru Kozu, Kazuhide Fukushima, Yosuke Murakami, Shinsaku Kiyomoto

2024

Abstract

The rise of complex global supply chains has increased the risk of malicious actors attempting to insert malicious functions, called hardware Trojans (HTs), into hardware components and devices. Although many HT detection methods have been proposed over a decade, implementing them in industries may take a long time due to concerns about these methods. In this paper, we propose a repository system to manage vulnerability information for securing hardware supply chains and investigate the demand and barriers to introducing hardware Trojan detection schemes in the industry. First, we design a scheme to share the results of HT detection methods. Second, we design questionnaires to investigate the actual situation of the industry’s awareness of the threat of HTs and other hardware security issues. We conclude that there is a gap between academics and the industry, whereas many business operators are concerned about the threat of HTs.

Download

Paper Citation

in Harvard Style

Hasegawa K., Hanahara K., Sugisaki H., Kozu M., Fukushima K., Murakami Y. and Kiyomoto S. (2024). Vulnerability Information Sharing Platform for Securing Hardware Supply Chains. In Proceedings of the 10th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP; ISBN 978-989-758-683-5, SciTePress, pages 403-410. DOI: 10.5220/0012351800003648

in Bibtex Style

@conference{icissp24,
author={Kento Hasegawa and Katsutoshi Hanahara and Hiroshi Sugisaki and Minoru Kozu and Kazuhide Fukushima and Yosuke Murakami and Shinsaku Kiyomoto},
title={Vulnerability Information Sharing Platform for Securing Hardware Supply Chains},
booktitle={Proceedings of the 10th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP},
year={2024},
pages={403-410},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0012351800003648},
isbn={978-989-758-683-5},
}

in EndNote Style

TY - CONF

JO - Proceedings of the 10th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP
TI - Vulnerability Information Sharing Platform for Securing Hardware Supply Chains
SN - 978-989-758-683-5
AU - Hasegawa K.
AU - Hanahara K.
AU - Sugisaki H.
AU - Kozu M.
AU - Fukushima K.
AU - Murakami Y.
AU - Kiyomoto S.
PY - 2024
SP - 403
EP - 410
DO - 10.5220/0012351800003648
PB - SciTePress