A new technical paper titled “Metrics and Methodology for Hardware Security Constructs” was published by NIST.
Abstract
“Although hardware is commonly believed to be security-resilient, it is often susceptible to vulnerabilities arising from design and implementation flaws. These flaws have the potential to jeopardize not only the hardware’s security, but also its operations and critical user information. In this investigation, we present a comprehensive methodology for assessing threats related to some of the most critical hardware weaknesses. The methodology evaluates various weaknesses and the attacks that can potentially exploit them, resulting in two key metrics: a threat metric, which quantifies the number of hardware weaknesses that an attack can exploit, and a sensitivity metric, which measures the number of distinct attacks that can target a hardware system with a specific weakness. These metrics and the accompanying analysis aim to guide security efforts and optimize the trade-offs between hardware security and associated costs.”
Find the technical paper here. June 2025.
Rekhi S, Amberiadis K, Akib AA, Srivastava A (2025) Metrics and Methodology for Hardware Security Constructs.
(National Institute of Standards and Technology, Gaithersburg, MD), NIST Cybersecurity White Paper (CSWP) NIST
CSWP 45. https://doi.org/10.6028/NIST.CSWP.45
Leave a Reply