Detail publikačního výsledku

Hardware-Accelerated Cryptography for Software-Defined Networks with P4

MALINA, L.; SMÉKAL, D.; RICCI, S.; HAJNÝ, J.; CÍBIK, P.; HRABOVSKÝ, J.

Originální název

Hardware-Accelerated Cryptography for Software-Defined Networks with P4

Anglický název

Hardware-Accelerated Cryptography for Software-Defined Networks with P4

Druh

Stať ve sborníku v databázi WoS či Scopus

Originální abstrakt

The paper presents a hardware-accelerated cryptographic solution for Field Programmable Gate Array (FPGA) based network cards that provide throughput up to 200 Gpbs. Our solution employs a Software-Defined Network (SDN) concept based on the high-level Programming Protocol-independent Packet Processors (P4) language that offers flexibility for network-oriented data processing. In order to accelerate cryptographic operations, we implement main cryptographic functions by VHSIC Hardware Description Language (VHDL) directly in FPGA, i.e., a symmetric cipher (AES-GCM-256), a digital signature scheme (EdDSA) and a hash function (SHA-3). Our solution then uses these widely-used cryptographic primitives as basic external P4 functions which can be applied in various customized security use cases. Thus, our solution allows engineers to avoid hardware development (VHDL) and offers rapid prototyping by using the high-level language (P4). Moreover, we test these cryptographic components on the UltraScale+ FPGA card and we present their hardware consumption and performance results.

Anglický abstrakt

The paper presents a hardware-accelerated cryptographic solution for Field Programmable Gate Array (FPGA) based network cards that provide throughput up to 200 Gpbs. Our solution employs a Software-Defined Network (SDN) concept based on the high-level Programming Protocol-independent Packet Processors (P4) language that offers flexibility for network-oriented data processing. In order to accelerate cryptographic operations, we implement main cryptographic functions by VHSIC Hardware Description Language (VHDL) directly in FPGA, i.e., a symmetric cipher (AES-GCM-256), a digital signature scheme (EdDSA) and a hash function (SHA-3). Our solution then uses these widely-used cryptographic primitives as basic external P4 functions which can be applied in various customized security use cases. Thus, our solution allows engineers to avoid hardware development (VHDL) and offers rapid prototyping by using the high-level language (P4). Moreover, we test these cryptographic components on the UltraScale+ FPGA card and we present their hardware consumption and performance results.

Klíčová slova

Cryptography; FPGA; hardware acceleration; digital signing; high-speed encryption; P4; software defined networks

Klíčová slova v angličtině

Cryptography; FPGA; hardware acceleration; digital signing; high-speed encryption; P4; software defined networks

Autoři

MALINA, L.; SMÉKAL, D.; RICCI, S.; HAJNÝ, J.; CÍBIK, P.; HRABOVSKÝ, J.

Rok RIV

2021

Vydáno

25.02.2021

Nakladatel

Springer

Kniha

Innovative Security Solutions for Information Technology and Communications

ISSN

0302-9743

Periodikum

Lecture Notes in Computer Science

Svazek

12596

Číslo

2021

Stát

Spolková republika Německo

Strany od

271

Strany do

287

Strany počet

16

BibTex

@inproceedings{BUT166328,
  author="Lukáš {Malina} and David {Smékal} and Sara {Ricci} and Jan {Hajný} and Peter {Cíbik} and Jakub {Hrabovský}",
  title="Hardware-Accelerated Cryptography for Software-Defined Networks with P4",
  booktitle="Innovative Security Solutions for Information Technology and Communications",
  year="2021",
  journal="Lecture Notes in Computer Science",
  volume="12596",
  number="2021",
  pages="271--287",
  publisher="Springer",
  issn="0302-9743"
}