hsm-survey-paper/paper.tex

\documentclass[submission]{iacrtrans}

\usepackage[T1]{fontenc}
\usepackage[
    backend=biber,
    style=numeric,
    natbib=true,
    url=false, 
    doi=true,
    eprint=false
    ]{biblatex}
\addbibresource{paper.bib}
\usepackage{amssymb,amsmath}
\usepackage{eurosym}
\usepackage{wasysym}
\usepackage[binary-units]{siunitx}
\usepackage{commath}
\usepackage{graphicx,color}
\usepackage{colortbl}
\usepackage{subcaption}
\usepackage{placeins}
\usepackage{array}
\usepackage{censor}
\usepackage{hyperref}
\usepackage{makecell}

\DeclareSIUnit{\baud}{Bd}
\DeclareSIUnit{\year}{a}
\DeclareSIUnit{\rpm}{rpm}
\renewcommand{\floatpagefraction}{.8}
\newcommand{\degree}{\ensuremath{^\circ}}
\newcolumntype{P}[1]{>{\centering\arraybackslash}p{#1}}
\newcommand{\partno}[1]{\textsf{\small#1}}
\newcommand{\price}[2]{#1 #2}
\newcommand{\todo}[1]{\textbf{TODO}\footnote{#1}}

% By default, our biblatex style will print "In: [name of proceedings]. [year] [name of event]" for every conference
% paper. Since the name of the proceedings is usually near-identical to the name of the event, this adds a lot of noise.
% Suppress the name of the proceedings when both are given.
\AtEveryBibitem{
    \ifentrytype{inproceedings}{
        \iffieldundef{booktitle}{
        }{
            \iffieldundef{eventtitle}{
            }{
                \clearfield{booktitle}
            }
        }
    }{
    }}

\begin{document}

\author{Jan Sebastian Götte\inst{1} \and Björn Scheuermann\inst{2}}
\institute{Technical University of Darmstadt, Darmstadt, Germany, \email{research@jaseg.de}\and
    Technical University of Darmstadt, Darmstadt, Germany, \email{bjoern.scheuermann@kom.tu-darmstadt.de}}
\title{Tamper Sensing Mesh Implementations in the Wild}
\keywords{Tamper Sensing\and Tamper Response\and Physical Security\and Security Mesh\and Hardware Security Module
            (HSM)\and FIPS 140-2/3\and ISO/IEC 24759\and PCI PTS HSM MSR}
\maketitle

\begin{abstract}
\end{abstract}

\section{Introduction}

\section{Related Work}
\subsection{Security Mesh Manufacturing}
\subsection{Security Mesh Monitoring}
\subsection{Other Tamper Sensing Techniques}
\subsection{Hardware Security Module Applications}
\subsection{The Patent Landscape}

\section{The Principles of Security Mesh Construction and Monitoring}

\section{Methodology}

\subsection{Sample selection}

Given their niche applications and high cost, samples of most types of devices incorporating tamper sensing meshes tend
to be hard to find. For this survey, we chose to collect two sets of samples: A general one representing variety across
categories, and a specialized one representing variety within one category. We selected \todo{Number} devices across
categories for the general category, and \todo{Number} payment terminals for the specialized category. All devices were
procured through ebay from second-hand sellers. Most of the payment terminals were procured from an electronic waste
recycling company through ebay.

\newpage
\subsection{Analysis Criteria}

\subsubsection{Mesh construction}
\begin{description}
    \item[A1 Substrate material.]
    \item[A2 Trace material.]
    \item[A3 Mechanical support.]
    \item[A4 Contact material.]
    \item[A5 Via construction.]
    \item[A6 Number of layers.]
    \item[A7 Layer distance.]
    \item[A8 Surface dimension (2D/2.5D/3D)]
    \item[A9 Specific resistance.]
    \item[A10 Temperature coefficient.]
    \item[A11 Trace thickness.]
    \item[A12 Trace edge roughness.]
\end{description}

\subsubsection{Mesh layout}
\begin{description}
    \item[B1 Number of traces. Routing.]
    \item[B2 Trace width. Trace pitch.]
    \item[B3 Enclosed sides.]
    \item[B4 Largest unidirectional gap: width and length.]
    \item[B5 Largest air gap: width and length.]
    \item[B6 Total mesh length.]
    \item[B7 Total resistance.]
    \item[B8 Total capacitance.]
    \item[B9 Total inductance.]
    \item[B10 Complex impedance.]
    \item[B11 Inter-trace capacitance.]
    \item[B12 Far-field inductive and capacitive coupling.]
    \item[B13 Trace area.]
    \item[B14 Area coverage ratio.]
\end{description}

\subsubsection{Environmental Resistivity}
\begin{description}
    \item[C1 Bending]
    \item[C2 Melting point]
    \item[C3 Solubility in water]
    \item[C4 Solubility in Isopropyl Alcohol (IPA)]
    \item[C5 Solubility in Acetone]
    \item[C6 Corrosion resistance?]
\end{description}

\subsubsection{Tamper Sensitivity}
\begin{description}
    \item[D1 Layer adhesion]
    \item[D2 Tensile strength]
    \item[D3 Nondestructive disassembly]
    \item[D4 Needle probing test mid-mesh]
    \item[D5 Disassembly detection method]
    \item[D6 Solderability]
\end{description}


\subsection{Analysis Workflow}

\begin{description}
    \item[Device Photo]
    \item[Disassembly]
    \item[Part photos]
    \item[Optical inspection]
    \item[Part x-ray]
    \item[Part CT]
    \item[Electrical tests]
    \item[Tampering tests]
    \item[Chemical tests]
\end{description}

\newpage
\paragraph{Mesh monitoring}

\section{Overview of Selected Samples}
\subsection{Traditional Hardware Security Modules}
\subsection{ATM Keypads} 
\subsection{Mail Franking Machines}
\subsection{Slot Machines}
\subsection{Payment Terminals}

\section{Analysis Results}

\section{Interpretation}

\section{Conclusion}


\section*{Availability}
This is version \texttt{\input{version.tex}\unskip} of this paper, generated on \today. The git repository with the
LaTeX source for this paper, all hardware design files, and firmware and analysis source code can be found at:

\center{Note: URL elided for peer review}
% \center{\url{https://git.jaseg.de/ihsm-sampling-mesh-monitor-hw.git}}
\FloatBarrier

\printbibliography[heading=bibintoc]

\appendix
\section{Additional photos}
\label{appendix_photos}

\end{document}