Brightsight

Brightsight Security Lab in a Box

Would you like to be able to perform state-of-the-art security testing on your own products?
Brightsight Security Lab in a Box (BSLB) enables you to do your own security testing before seeking official certification. By doing security testing yourself, you minimise the possibility of show-stoppers during the certification process. You will be able to prove the security of your design during the development phase. With BSLB you will have the same toolset Brightsight uses for security evaluations. You will be able to do your own analysis, based on either your own test plans or test plans created by Brightsight experts as part of an evaluation. Having your own BSLB will save you time and money.

Fields of expertise

Some of our customers

The process of getting a certificate

What is included in BSLB?

BSLB contains the following set-ups and equipment:

  • Brightsight Long Pulse Laser set-up
  • Brightsight Short Pulse Laser set-up
  • Brightsight EMFI set-up
  • Brightsight BBI set-up
  • Brightsight HPVG set-up
  • Brightsight LPVG set-up
  • Brightsight Side-Channel Analysis set-up
  • Brightsight Side-Channel Deep Learning Extension

BSLB will be delivered with software to control the set-ups and analyse the results:

  • Brightsight Matrix: the Brightsight measurement and analysis framework. This provides support to control the various measurement set-ups used at Brightsight as well as a range of tools for data analysis.
  • Brightsight Sideways: the Brightsight main signal analysis tool. This is used to prepare and analyse sets of measured power and EM traces.

BSLB offers more than just tools

As the name suggests, Brightsight Security Lab in a Box is much more than just hardware and software. You will be trained to manage your own lab and perform security testing. BSLB offers you 3 weeks of training by Brightsight experts. The training modules will teach you how to use the set-ups and perform state-of-the-art attacks using the Brightsight test platform. The training modules include information about the different attacks, lab operations, software usage, and using the tools to perform perturbation attacks and side-channel analysis.

Brightsight will visit you 3 times a year to give a workshop (max 3 days) to present new features, perform updates, and provide on-site support when needed. Our experts provide 24/7 support throughout the year.

Customised training services or hands-on exercises can be ordered in addition.

Your toolset:

1. Brightsight EMFI set-up

EMFI set-up

The EMFI set-up injects glitches by emitting an electromagnetic pulse. To generate these pulses, an in-house developed coil is used in combination with an EMFI pulse generator. This coil is placed very close to the target of evaluation (TOE). The brief presence of a strong electric field induces a current that may affect the behaviour of the TOE.

2. Brightsight BBI set-up

Brightsight BBI set-up

The BBI set-up is similar to the EMFI set-up. The main difference is the way energy is injected into the chip. Where EMFI uses a coil close to the surface (metal side) of the chip, BBI uses a needle placed onto the substrate (silicon side) of the chip to inject energy locally into the product. As with EMFI, this may affect the behaviour of the TOE.

3. Brightsight VG set-ups:
Low Power Voltage Glitch (LPVG) and High Power Voltage Glitch (HPVG)

LPVG and HPVG

The VG set-up injects faultsthrough the voltage supply line of the product. To inject these faults, a glitch is introduced to generate a power spike. These spikes can cause a processor to skip or misinterpret an instruction, but also induce memory faults.

4. Brightsight Side-Channel Analysis set-up

With the SCA set-up you can take measurements in order to perform attacks on ICs, smart cards, and terminals. You can measure the power consumption and/or the EM emanation of your samples. These side channels reveal information about the processes running on these devices. Statistical analysis of the measurements obtained may reveal secret information from these side channels, such as PIN values or encryption keys.

5. Brightsight Side-Channel Deep Learning Extension

The Deep Learning Extension is configured to perform computationally intensive analysis of data obtained from the Side-Channel Analysis Measurement set-up. Such analysis includes deep learning, template attacks, the aforementioned statistical analysis, and any other tasks that benefit from running on a high-performance PC.

6. Brightsight Laser set-ups: Long Pulse Laser (LPL) and Short Pulse Laser (SPL)

Brightsight tools

BSLB comes with two laser set-ups. Why two? Because there is a substantial difference between the laser sources in these set-ups, which means they affect the sample in different ways. The SPL is a powerful laser that emits very short pulses. With very low settings, you can influence the behaviour of the TOE. The LPL is less powerful than the SPL, but it generates longer pulses, which affect silicon in a different way. When attacking a chip with an LPL or SPL, you can target either the metal side or the silicon side of the chip.

Interested in expanding BSLB with more set-ups? Let’s talk!