PowerGAN: A Machine Learning Approach for Power Side‐Channel Attack on Compute‐in‐Memory Accelerators
Analog compute‐in‐memory (CIM) systems are promising candidates for deep neural network (DNN) inference acceleration. However, as the use of DNNs expands, protecting user input privacy has become increasingly important. Herein, a potential security vulnerability is identified wherein an adversary can reconstruct the user's private input data from a power side‐channel attack even without knowledge of the stored DNN model. An attack approach using a generative adversarial network is developed to achieve high‐quality data reconstruction from power leakage measurements. The analyses show that the attack methodology is effective in reconstructing user input data from power leakage of the analog CIM accelerator, even at large noise levels and after countermeasures. To demonstrate the efficacy of the proposed approach, an example of CIM inference of U‐Net for brain tumor detection is attacked, and the original magnetic resonance imaging medical images can be successfully reconstructed even at a noise level of 20% standard deviation of the maximum power signal value. This study highlights a potential security vulnerability in emerging analog CIM accelerators and raises awareness of needed safety features to protect user privacy in such systems.
- Location
-
Deutsche Nationalbibliothek Frankfurt am Main
- Extent
-
Online-Ressource
- Language
-
Englisch
- Bibliographic citation
-
PowerGAN: A Machine Learning Approach for Power Side‐Channel Attack on Compute‐in‐Memory Accelerators ; day:22 ; month:09 ; year:2023 ; extent:10
Advanced intelligent systems ; (22.09.2023) (gesamt 10)
- Creator
- DOI
-
10.1002/aisy.202300313
- URN
-
urn:nbn:de:101:1-2023092315035236880509
- Rights
-
Open Access; Der Zugriff auf das Objekt ist unbeschränkt möglich.
- Last update
-
14.08.2025, 10:46 AM CEST
Data provider
Deutsche Nationalbibliothek. If you have any questions about the object, please contact the data provider.
Associated
- Wang, Ziyu
- Wu, Yuting
- Park, Yongmo
- Yoo, Sangmin
- Wang, Xinxin
- Eshraghian, Jason K.
- Lu, Wei
Other Objects (12)
Deep Learning Side-Channel Collision Attack
Speeding up Programs with OpenACC in GCC: ... using the compute power of GPUs and other accelerators
High-power proton accelerators for pulsed spallation neutron sources
powerLang: a probabilistic attack simulation language for the power domain
Novel power trace processing methods for side-channel analysis of cryptosystems
Novel Power Trace Processing Methods for Side-Channel Analysis of Cryptosystems
Cross-device profiled side-channel attack with unsupervised domain adaptation
A traffic analysis attack to compute social network measures
Quantum Circuit Reconstruction from Power Side-Channel Attacks on Quantum Computer Controllers
Amplitude-modulated EM side-channel attack on provably secure masked AES
A key-recovery side-channel attack on Classic McEliece implementations
Tandem Deep Learning Side-Channel Attack on FPGA Implementation of AES
Deep Learning Side-Channel Collision Attack
Speeding up Programs with OpenACC in GCC: ... using the compute power of GPUs and other accelerators
High-power proton accelerators for pulsed spallation neutron sources
powerLang: a probabilistic attack simulation language for the power domain
Novel power trace processing methods for side-channel analysis of cryptosystems
Novel Power Trace Processing Methods for Side-Channel Analysis of Cryptosystems
Cross-device profiled side-channel attack with unsupervised domain adaptation
A traffic analysis attack to compute social network measures
Quantum Circuit Reconstruction from Power Side-Channel Attacks on Quantum Computer Controllers
Amplitude-modulated EM side-channel attack on provably secure masked AES
A key-recovery side-channel attack on Classic McEliece implementations
Tandem Deep Learning Side-Channel Attack on FPGA Implementation of AES
Deep Learning Side-Channel Collision Attack
Speeding up Programs with OpenACC in GCC: ... using the compute power of GPUs and other accelerators
High-power proton accelerators for pulsed spallation neutron sources
powerLang: a probabilistic attack simulation language for the power domain
Novel power trace processing methods for side-channel analysis of cryptosystems
Novel Power Trace Processing Methods for Side-Channel Analysis of Cryptosystems
Cross-device profiled side-channel attack with unsupervised domain adaptation
A traffic analysis attack to compute social network measures
Quantum Circuit Reconstruction from Power Side-Channel Attacks on Quantum Computer Controllers
Amplitude-modulated EM side-channel attack on provably secure masked AES
A key-recovery side-channel attack on Classic McEliece implementations