China-made US military chip has security backdoor

micropage7 · May 31, 2012

Researchers at Cambridge University have found that a microprocessor used extensively by the US military contains a backdoor built into the design allowing the chip to be reprogrammed. The chip is used in many systems including weapons, nuclear power plants and public transport. The "bug" is in the chip itself rather than the firmware, the only “fix” would be replacement.

Sergei Skorobogatov of Quo Vadis Labs at Cambridge University said of his backdoor discovery “Our aim was to perform advanced code breaking and to see if there were any unexpected features on the (US Military) chip. We scanned the silicon chip in an affordable time and found a previously unknown backdoor inserted by the manufacturer. This backdoor has a key, which we were able to extract. If you use this key you can disable the chip or reprogram it at will, even if locked by the user with their own key. This particular chip is prevalent in many systems from weapons, nuclear power plants to public transport. In other words, this backdoor access could be turned into an advanced Stuxnet weapon to attack potentially millions of systems. The scale and range of possible attacks has huge implications for National Security and public infrastructure.”

It sounds very serious and a bit like the Die Hard 4 plot theme but to exploit the backdoor would “require a Mission-Impossible break-in to the afflicted site and hardware, probably carrying a reasonable amount of special equipment with you.” Says Alec Muffet at ComputerWorldUK. In other words you have to be able to physically connect some equipment to the chip/system to re-program it.

When considering the question of who put the backdoor in the chip, it was not necessarily the Chinese. The backdoor may well have been in the original chip design, put there as a debugging tool by the designer. Errata Security actually say that backdoors are common, rarely malicious and the possible Chinese subversion, because they manufactured the chip, is only improbable speculation. In addition the chip vendor Microsemi/Actel could helpfully issue a statement to clear up if they knew about this chip feature and if it’s part of the design.

Skorobogatov thinks his discovery illustrates a big problem in chip manufacture “The discovery of a backdoor in a military grade chip raises some serious questions about hardware assurance in the semiconductor industry.” After reading about the highly targeted Flame espionage virus yesterday, to learn that some important military utilised processors have such vulnerabilities is worrying.
http://hexus.net/tech/news/cpu/40037-china-made-us-military-chip-security-backdoor/

FreedomEclipse · May 31, 2012

yeah..... In other words If china attacks - it doesnt matter about ammunition as most of it is already located in the U.S armouries!

China - 1 - U.S - 0

though that would be quite a bad loss for the U.S if the U.S could have their own hi-tech weapons used against them in a bitter twist of fate.

then again terrorists could get hold of the blueprints too and hijack the chinese invasion for their own wars and ideals

ShiBDiB · May 31, 2012

In other words you have to be able to physically connect some equipment to the chip/system to re-program it.

/thread

Fear mongering attempt FAIL (ur source not u)

GSG-9 · May 31, 2012

The NSA has divisions dedicated to testing chips. I am not saying they are infallible, but I bet most of the time THEY know what the vulnerabilities are when they pick a product.

Arctucas · May 31, 2012

I, as an American taxpayer, would like to know why our military is buying chips from China?

For the amount of money our military spends, I am sure there are many American companies more than capable of producing chips here in the U.S.

AsRock · May 31, 2012

Arctucas said:
I, as an American taxpayer, would like to know why our military is buying chips from China?

For the amount of money our military spends, I am sure there are many American companies more than capable of producing chips here in the U.S.

because it's cheaper LMAO.

micropage7 · Jun 1, 2012

AsRock said:
because it's cheaper LMAO.

yeah, maybe thats the reason since most stuff comes from china tagged in low price
so with the same money you gonna get more :toast:

Arctucas · Jun 1, 2012

AsRock said:
because it's cheaper LMAO.

...like the poison dog food and toothpaste from China a few years ago?

No thanks, would I prefer American products made by Americans in America.

Inceptor · Jun 9, 2012

Do you think that the PCs in the Pentagon and other US government departments are custom made, in the US, with American made components?
Come on now. They have to buy from the same companies everyone else does, they just make sure there are no security concerns with the hardware involved (motherboards being the prime example). It must be expensive to do an analysis of a motherboard to find out if all the component chips are 'safe', not to mention all the other hardware components.

Dippyskoodlez · Jun 9, 2012

ShiBDiB said:
/thread

Fear mongering attempt FAIL (ur source not u)

Until you factor in stuff like FLAME.

Not as big of an issue for what is likely MOST of the chips... but you get the right few... and shit hits the fan. Better to not have these exist, than to assume they won't be used. Too many possibilities. If the hardware is out of positive control at any time, it may be considered compromised.

AsRock · Jun 9, 2012

micropage7 said:
yeah, maybe thats the reason since most stuff comes from china tagged in low price
so with the same money you gonna get more

Well lets face it most things have some kind of backdoor to them.

Arctucas said:
...like the poison dog food and toothpaste from China a few years ago?

No thanks, would I prefer American products made by Americans in America.

America cannot afford shit from china never mind America.. Like shit i like in PA were heinz beans started and shit i have to go to the British shelf in the shop to get them lol.

For example if made in America it's typically more expensive than getting it done in another country.. What makes this even worse prices rise in the US so these other country's have to make that item even more cheaper.

So it's not the other country's at fault it's this country ( others to like the UK ).

On subject if i was living in China and some one asked me to make a chip that control nukes that could blow me up one day shit i put a back door in that fucker without a second thought. Even if it was for the country i lived in their be a back door has their has to be some kind of fail safe.

Mussels · Jun 9, 2012

well they need physical access to the chips to reprogram them, meaning they'd need a saboteur there in the first place. i find this unlikely.

that said, good that the flaw was found, and bad hardware can be replaced.

Peter1986C · Jun 9, 2012

micropage7 said:
In other words you have to be able to physically connect some equipment to the chip/system to re-program it.

ShiBDiB said:
/thread

Fear mongering attempt FAIL (ur source not u)

Mussels said:
well they need physical access to the chips to reprogram them, meaning they'd need a saboteur there in the first place. i find this unlikely.

that said, good that the flaw was found, and bad hardware can be replaced.

I concur. I suppose that bombing military facilities is a better and more used strategy than trying to infiltrate it (guessing that it is too much a risk for the men sent in and not worth it).

Easy Rhino · Jun 9, 2012

this was proven false. there is no feasible way for china to use the chips they manufactured to do anything at all. stop reading reddit.

Wrigleyvillain · Jun 10, 2012

Easy Rhino said:
stop reading reddit.

Haha.

Yeah I found this hard to believe. Shit like this is the exact reason China designed and manufactured their own CPU. They don't trust ours.

ViperXTR · Jun 10, 2012

All your base are belong to us. You are on the way to destruction.

GC_PaNzerFIN · Jun 11, 2012

Good luck getting in a F-22 raptor with EEPROM flash device and finding the chip you want to reflash. Might aswell hit it with hammer, much quicker way to disable it.

Military loves reprogrammable FPGAs and microcontrollers for obvious reasons. It is well known that they aren't 100% secure, but hey it is quite unlikely your enemy has time to take your radio, reflash it, give it back to you and then shoot you.

rectifryer · Jun 12, 2012

The real issue here is that people are always trying to point out military "weaknesses" of the USA. I find that interesting.

System Name	micropage7
Processor	Intel Xeon X3470
Motherboard	Gigabyte Technology Co. Ltd. P55A-UD3R (Socket 1156)
Cooling	Enermax ETS-T40F
Memory	Samsung 8.00GB Dual-Channel DDR3
Video Card(s)	NVIDIA Quadro FX 1800
Storage	V-GEN03AS18EU120GB, Seagate 2 x 1TB and Seagate 4TB
Display(s)	Samsung 21 inch LCD Wide Screen
Case	Icute Super 18
Audio Device(s)	Auzentech X-Fi Forte
Power Supply	Silverstone 600 Watt
Mouse	Logitech G502
Keyboard	Sades Excalibur + Taihao keycaps
Software	Win 7 64-bit
Benchmark Scores	Classified

System Name	Codename: Icarus Mk.VI
Processor	Intel 8600k@Stock -- pending tuning
Motherboard	Asus ROG Strixx Z370-F
Cooling	CPU: BeQuiet! Dark Rock Pro 4 {1xCorsair ML120 Pro\|5xML140 Pro}
Memory	32GB XPG Gammix D10 {2x16GB}
Video Card(s)	ASUS Dual Radeon™ RX 6700 XT OC Edition
Storage	Samsung 970 Evo 512GB SSD (Boot)\|WD SN770 (Gaming)\|2x 3TB Toshiba DT01ACA300\|2x 2TB Crucial BX500
Display(s)	LG GP850-B
Case	Corsair 760T (White)
Audio Device(s)	Yamaha RX-V573\|Speakers: JBL Control One\|Auna 300-CN\|Wharfedale Diamond SW150
Power Supply	Corsair AX760
Mouse	Logitech G900
Keyboard	Duckyshine Dead LED(s) III
Software	Windows 10 Pro
Benchmark Scores	(ノಠ益ಠ)ノ彡┻━┻

System Name	[Daily Driver]
Processor	[Ryzen 7 5800X3D]
Motherboard	[Asus TUF GAMING X570-PLUS]
Cooling	[be quiet! Dark Rock Slim]
Memory	[64GB Corsair Vengeance LPX 3600MHz (16GBx4)]
Video Card(s)	[PNY RTX 3070Ti XLR8]
Storage	[1TB SN850 NVMe, 4TB 990 Pro NVMe, 2TB 870 EVO SSD, 2TB SA510 SSD]
Display(s)	[2x 27" HP X27q at 1440p]
Case	[Fractal Meshify-C]
Audio Device(s)	[Steelseries Arctis Pro]
Power Supply	[CORSAIR RMx 1000]
Mouse	[Logitech G Pro Wireless]
Keyboard	[Logitech G512 Carbon (GX-Brown)]
Software	[Windows 11 64-Bit]

System Name	Livingston
Processor	i7-4960HQ
Motherboard	macbook prp retina
Cooling	Alphacool NexXxoS Monsta (240mm x 120mm x 80mm)
Memory	16Gb
Video Card(s)	Zotac Arctic Storm Nvidia 980ti
Display(s)	1x Acer XB270HU, 1x Catleap, 1x Oculus
Benchmark Scores	http://www.3dmark.com/fs/770087

System Name	It's just a computer
Processor	i9-9900K Direct Die
Motherboard	eVGA Z390 Dark
Cooling	Dual D5T Vario, XSPC BayRes, Nemesis GTR560, NF-A14-iPPC3000PWM, NF-A14-iPPC2000, HK IV Pro Nickel
Memory	G.Skill F4-4500C19D-16GTZKKE or G.Skill F4-3600C16D-16GTZ or G.Skill F4-4000C19D-32GTZSW
Video Card(s)	eVGA RTX2080 FTW3 Ultra
Storage	Samsung 960 EVO M.2
Display(s)	LG 32GK650F
Case	Thermaltake Xaser VI
Audio Device(s)	Auzentech X-Meridian 7.1 2G/Z-5500
Power Supply	Seasonic Prime PX-1300
Mouse	Logitech
Keyboard	Logitech
Software	Win7 Ultimate x64 SP1

China-made US military chip has security backdoor

micropage7

FreedomEclipse

~Technological Technocrat~

ShiBDiB

GSG-9

Arctucas

AsRock

TPU addict

micropage7

Arctucas

Inceptor

Dippyskoodlez

AsRock

TPU addict

Mussels

Freshwater Moderator

Peter1986C

Easy Rhino

Linux Advocate

Wrigleyvillain

PTFO or GTFO

ViperXTR

GC_PaNzerFIN

rectifryer

New Member

Processor	AMD 3900X \ AMD 7700X
Motherboard	ASRock AM4 X570 Pro 4 \ ASUS X670Xe TUF
Cooling	D15
Memory	Patriot 2x16GB PVS432G320C6K \ G.Skill Flare X5 F5-6000J3238F 2x16GB
Video Card(s)	eVga GTX1060 SSC \ XFX RX 6950XT RX-695XATBD9
Storage	Sammy 860, MX500, Sabrent Rocket 4 Sammy Evo 980 \ 1xSabrent Rocket 4+, Sammy 2x990 Pro
Display(s)	Samsung 1080P \ LG 43UN700
Case	Fractal Design Pop Air 2x140mm fans from Torrent \ Fractal Design Torrent 2 SilverStone FHP141x2
Audio Device(s)	Yamaha RX-V677 \ Yamaha CX-830+Yamaha MX-630 Infinity RS4000\Paradigm P Studio 20, Blue Yeti
Power Supply	Seasonic Prime TX-750 \ Corsair RM1000X Shift
Mouse	Steelseries Sensei wireless \ Steelseries Sensei wireless
Keyboard	Logitech K120 \ Wooting Two HE
Benchmark Scores	Meh benchmarks.

System Name	Multipurpose desktop
Processor	AMD Phenom II x6 1605T @ 3.75Ghz , NB @ 2.5
Motherboard	Gigabyte 990FXA-UD3 (rev 1.0)
Cooling	Prolimatech Megahalems Rev. C, 2x120mm CM Blademaster
Memory	Corsair Vengeance LP (4x4GB) @1666Mhz 9-9-9-20-24 1T
Video Card(s)	ASUS Strix R7-370 4GB OC
Storage	2x WD Caviar Black 500GB Sata III in RAID 0
Display(s)	Acer S211HL 21.5" 1920x1080
Case	Cooler Master Centurion 534+, 3x 120mm CM Sickle Flow
Power Supply	Seasonic X650 Gold
Software	Windows 7 x64 Home Premium SP1

System Name	Dell XPS 15 9560
Processor	I7-7700HQ
Memory	32GB DDR4
Video Card(s)	GTX 1050/1080 Ti
Storage	1TB SSD
Display(s)	2x Dell P2715Q/4k Internal
Case	Razer Core
Audio Device(s)	Creative E5/Objective 2 Amp/Senn HD650
Mouse	Logitech Proteus Core
Keyboard	Logitech G910

System Name	Rainbow Sparkles (Power efficient, <350W gaming load)
Processor	Ryzen R7 5800x3D (Undervolted, 4.45GHz all core)
Motherboard	Asus x570-F (BIOS Modded)
Cooling	Alphacool Apex UV - Alphacool Eisblock XPX Aurora + EK Quantum ARGB 3090 w/ active backplate
Memory	2x32GB DDR4 3600 Corsair Vengeance RGB @3866 C18-22-22-22-42 TRFC704 (1.4V Hynix MJR - SoC 1.15V)
Video Card(s)	Galax RTX 3090 SG 24GB: Underclocked to 1700Mhz 0.750v (375W down to 250W))
Storage	2TB WD SN850 NVME + 1TB Sasmsung 970 Pro NVME + 1TB Intel 6000P NVME USB 3.2
Display(s)	Phillips 32 32M1N5800A (4k144), LG 32" (4K60) \| Gigabyte G32QC (2k165) \| Phillips 328m6fjrmb (2K144)
Case	Fractal Design R6
Audio Device(s)	Logitech G560 \| Corsair Void pro RGB \|Blue Yeti mic
Power Supply	Fractal Ion+ 2 860W (Platinum) (This thing is God-tier. Silent and TINY)
Mouse	Logitech G Pro wireless + Steelseries Prisma XL
Keyboard	Razer Huntsman TE ( Sexy white keycaps)
VR HMD	Oculus Rift S + Quest 2
Software	Windows 11 pro x64 (Yes, it's genuinely a good OS) OpenRGB - ditch the branded bloatware!
Benchmark Scores	Nyooom.

System Name	desktop \| Odroid N2+ \|
Processor	AMD Ryzen 5 3600 \| Amlogic S922X \|
Motherboard	Gigabyte B550M DS3H \|Odroid N2+ \|
Cooling	Inter-Tech Argus SU-200, 3x Arctic P12 case fans \| stock heatsink + fan \|
Memory	Gskill Aegis DDR4 32GB \| 4 GB DDR4 \|
Video Card(s)	Sapphire Pulse RX 6600 (8GB) \| Arm Mali G52 \|
Storage	SK Hynix SSD 240GB, Samsung 840 EVO 250 GB, Toshiba DT01ACA100 1T \| Samsung 850 Evo 500GB \|
Display(s)	AOC G2260VWQ6 \| LG 24MT57D \|
Case	Asus Prime 201 \| Stock case (black version) \|
Audio Device(s)	integrated
Power Supply	BeQuiet! Pure Power 11 400W \| 12v barrel jack \|
Mouse	Logitech G500 \|Steelseries Rival 300
Keyboard	Qpad MK-50 (Cherry MX brown)\| Blaze Keyboard
Software	Windows 10, Various Linux distros \| Gentoo Linux

System Name	Desktop
Processor	i5 13600KF
Motherboard	AsRock B760M Steel Legend Wifi
Cooling	Noctua NH-U9S
Memory	4x 16 Gb Gskill S5 DDR5 @6000
Video Card(s)	Gigabyte Gaming OC 6750 XT 12GB
Storage	WD_BLACK 4TB SN850x
Display(s)	Gigabye M32U
Case	Corsair Carbide 400C
Audio Device(s)	On Board
Power Supply	EVGA Supernova 650 P2
Mouse	MX Master 3s
Keyboard	Logitech G915 Wireless Clicky
Software	The Matrix

System Name	DarkStar
Processor	i5 3570K 4.4Ghz
Motherboard	Asrock Z77 Extreme 3
Cooling	Apogee HD White/XSPC Razer blocks
Memory	8GB Samsung Green 1600
Video Card(s)	2 x GTX 670 4GB
Storage	2 x 120GB Samsung 830
Display(s)	27" QNIX
Case	Enthoo Pro
Power Supply	Seasonic Platinum 760
Mouse	Steelseries Sensei
Keyboard	Ducky Pro MX Black
Software	Windows 8.1 x64

System Name	Ultima
Processor	AMD Ryzen 7 5800X
Motherboard	MSI Mag B550M Mortar
Cooling	Arctic Liquid Freezer II 240 rev4 w/ Ryzen offset mount
Memory	G.SKill Ripjaws V 2x16GB DDR4 3600
Video Card(s)	Palit GeForce RTX 4070 12GB Dual
Storage	WD Black SN850X 2TB Gen4, Samsung 970 Evo Plus 500GB , 1TB Crucial MX500 SSD sata,
Display(s)	ASUS TUF VG249Q3A 24" 1080p 165-180Hz VRR
Case	DarkFlash DLM21 Mesh
Audio Device(s)	Onboard Realtek ALC1200 Audio/Nvidia HD Audio
Power Supply	Corsair RM650
Mouse	Steelseries Rival 3 Wireless \| Wacom Intuos CTH-480
Keyboard	A4Tech B314 Keyboard
Software	Windows 10 Pro

System Name	RGB-PC v2.0
Processor	AMD Ryzen 7950X
Motherboard	Asus Crosshair X670E Extreme
Cooling	Corsair iCUE H150i RGB PRO XT
Memory	4x16GB DDR5-5200 CL36 G.SKILL Trident Z5 NEO RGB
Video Card(s)	Asus Strix RTX 2080 Ti
Storage	2x2TB Samsung 980 PRO
Display(s)	Acer Nitro XV273K 27" 4K 120Hz (G-SYNC compatible)
Case	Lian Li O11 Dynamic EVO
Audio Device(s)	Audioquest Dragon Red + Sennheiser HD 650
Power Supply	Asus Thor II 1000W + Cablemod ModMesh Pro sleeved cables
Mouse	Logitech G500s
Keyboard	Corsair K70 RGB with low profile red cherrys
Software	Windows 11 Pro 64-bit