At SEMICON West, Dr. Bertrand Cambou of High Entropy Security explored a fast-evolving challenge in the semiconductor ecosystem: the rise of counterfeit and cloned devices. His session introduced a technical and scientifically grounded approach to solving this problem—device fingerprinting, the use of intrinsic manufacturing variation to create unclonable identities for each chip.
Cambou’s presentation illustrated how semiconductor fingerprinting combines physics, manufacturing realities, and AI-driven validation to establish authenticity in ways traditional methods cannot match.
Shape
1. Every Semiconductor Device Contains a Unique Physical Signature
Cambou began by explaining a foundational property of semiconductor manufacturing: no two devices are perfectly identical. Microscopic variations in materials, lithography, doping, and process steps produce natural randomness.
These variations form a unique, unclonable physical fingerprint. This fingerprint can be:
- Measured
- Characterized
- Bound to device identity
- Used for authentication
This approach is resilient because it does not require adding new circuits or security modules—the silicon itself becomes the security feature.
2. Counterfeit Devices Pose a Growing Threat
Cambou outlined several real-world scenarios where counterfeit or cloned components cause harm:
- Fake secure elements entering financial systems
- Counterfeit microcontrollers used in identity solutions
- Unauthorized clones undermining product reliability
- Trojan-modified chips entering critical systems
Traditional security measures often fall short because counterfeiters now replicate packaging, serial numbers, and superficial logic behavior. Physical fingerprinting offers an inherently more robust defense.
3. The Limitations of PUFs and the Challenge of Cloning
Physical Unclonable Functions (PUFs) have long been proposed as a way to leverage hardware uniqueness. But Cambou noted that widely used PUFs—such as SRAM-based designs—can sometimes be replicated or approximated through characterization attacks.
Clone resistance requires more than static measurements; it requires validation that the device is alive, not merely mimicking expected outputs.
4. AI “Liveness Tests” Strengthen Fingerprinting Systems
Cambou introduced AI-based liveness detection as a second layer of defense. When a real device is measured repeatedly over time, natural noise and drift appear in the fingerprint. AI models can distinguish this authentic variability from the behavior of a simulated or cloned device.
This approach makes fingerprinting:
- More robust
- Harder to spoof
- More reliable under different environmental conditions
- Better aligned with real-world deployment needs
5. Fingerprinting as a Tool for Supply Chain Integrity
Fingerprinting supports broader supply chain goals—many of which were highlighted throughout SEMICON West. These include:
- Ensuring genuine components enter critical systems
- Verifying device origin
- Detecting unauthorized substitutions
- Strengthening counter-counterfeiting efforts
- Enhancing lifecycle tracking
Combined with provenance and traceability, fingerprinting helps create a more trustworthy global semiconductor ecosystem.
6. Physics-Based Trust Will Grow in Importance
Cambou’s closing insight was that as the semiconductor ecosystem becomes more distributed and threats become more sophisticated, trust anchored in physical reality will be increasingly valuable. Fingerprinting creates a path toward that trust—one rooted not in documentation or assumptions, but in the immutable characteristics of silicon itself.
Source: “Secure Together: Building Cybersecurity Resilience Through Industry Alliances,” SEMICON West 2025. Speakers: James Kaplan (McKinsey & Company); Quentin Kantaris (TXOne Networks); Bradford Hegrat (Accenture); Nijaz Velic and Richard Morris (NY CREATES); Tom Palmaers and Giselle M.H. Van Tornout (imec); SZ Lin (Sun Square); Ross Mahler and Marty Wachi (Moxa); Simon Davies (Renesas); Jennifer Lynn (IBM); Prabhu Jayanna (AMD); Anusha Annapareddy (Applied Materials); Bertrand F. Cambou (High Entropy Security); Daniel O'Loughlin (Qualcomm). Panel moderator: Andrew M. Seward (Tokyo Electron America).
