Only untrusted design houses are vulnerable to PCB attacks. 1. Trusted design houses are not susceptible to malicious attacks. 2. Modchip attacks are prevalent in gaming consoles. 3. PCB reverse engineering requires industry-grade equipment and expertise. 4. It is comparatively easier to find a Trojan in multilayer PCBs.

Define hardware Trojans. What is the definition of a Modchip? What is JTAG? What primary purpose a PCB serves in any electronic hardware system? Describe possible attacks on a PCB.

In the high level block diagram of a PCB used in a TV set top box the Digital Right Management (DRM) key is stored in a non-volatile memory (NVM) which goes to a comparator that generates the channel grant access signal. Describe a possible tampering attack that can bypass this protection. You can update the

Describe a potential attack instance when the design house is trusted in the PCB manufacturing process. Illustrate the scenario with an appropriate case study. 1. What would be an attack instance on PCBs manufactured in untrusted design houses? Describe with a relevant case study. 2. What are the possible attacks on PCBs? Explain the taxonomy

Weak PUF is ideal for detecting counterfeit ICs via CRP-based authentication schemes. Error Correction Code (ECC) schemes can be used to improve the robustness for both PUF responses and TRNG outputs. A ring oscillator (RO)-PUF is basically a delay-based PUF. A TRNG must rely on random intrinsic or runtime noise.

Depending on the startup behavior, the SRAM-array can be used both as a PUF and a TRNG. 1. Runtime variation (such as power supply noise and Vdd fluctuations) is good for PUFs, but unacceptable for TRNGs. 2. DfAC structures, such as CDIR sensors, utilize aging phenomena for detecting prior usages of the IC.

Ideally, PUFs should have 50% intra-Hamming distance. Ideally, TRNGs should have 50% intra-Hamming distance. Frequency injection attack on an oscillator-based TRNG reduces the throughput, but entropy remains the same.

Briefly discuss the major characteristic differences between PUFs, TRNGs, and DfACs. 1. Briefly discuss the quality metrics used to evaluate PUFs and TRNGs. 2. Explain why RO-PUFs tend to produce more erroneous responses due to runtime noise and aging compared to traditional arbiter-PUFs. 3. Briefly describe what security primitives (strong PUFs, weak PUFs, or TRNGs)

Briefly explain the differences between a TRNG and a PRNG? Which one of them would you consider, if you were only interested in: (a) High entropy. (b) High speed. (c) Low runtime noise.

Explain how you can increase the security of the response of a weak PUF (used for key generation) against possible guessing or side-channel attacks. 1. Briefly explain the major challenges that PUFs and TRNGs suffer.