cryptographic hashing in p4 data planes
play

Cryptographic Hashing in P4 Data Planes Dominik Scholz , Andreas - PowerPoint PPT Presentation

Mar 03, 2023 •31 likes •181 views

Chair of Network Architectures and Services Department of Informatics Technical University of Munich Cryptographic Hashing in P4 Data Planes Dominik Scholz , Andreas Oeldemann, Fabien Geyer, Sebastian Gallenmller, Henning Stubbe, Thomas Wild,

  1. Chair of Network Architectures and Services Department of Informatics Technical University of Munich Cryptographic Hashing in P4 Data Planes Dominik Scholz , Andreas Oeldemann, Fabien Geyer, Sebastian Gallenmüller, Henning Stubbe, Thomas Wild, Andreas Herkersdorf, Georg Carle Chair of Network Architectures and Services Department of Informatics Technical University of Munich

  2. Motivation Manifold P4 Applications and Programs Imagine long list of P4 programs here → Few programs that require cryptographic functionality Image from https://bit.ly/2LHVmDZ P4 is of high interest to industry, e.g. avionics • Rapid prototyping • Program verification • . . . Requires guarantees: e.g. authentication of switches Scholz, Oeldemann, Geyer, Gallenmüller, Stubbe, Wild, Herkersdorf, Carle — Cryptographic Hashing in P4 Data Planes 2

  3. Motivation Cryptographic Properties and Functions Cryptographic properties commonly found in network applications and protocols • Confidentiality • Authenticity (data/message integrity) • Authentication (data origin authentication) Cryptographic functions • Encryption • Hash functions → in this work we focus on cryptographic hash functions Scholz, Oeldemann, Geyer, Gallenmüller, Stubbe, Wild, Herkersdorf, Carle — Cryptographic Hashing in P4 Data Planes 3

  4. Motivation Use cases for cryptographic hash functions Data structures Authenticity/Authentication • Hash maps • Message Authentication Codes • Bloom-Filter • Client puzzles (TCP SYN cookies) But: cryptographic functions not required Cryptographic functions required e.g. Bloom-Filter: linear-independent hashes suffice Scholz, Oeldemann, Geyer, Gallenmüller, Stubbe, Wild, Herkersdorf, Carle — Cryptographic Hashing in P4 Data Planes 4

  5. Outline Problem Statement Choice of Hash Function P4 Targets and Hash Integration Performance Results Conclusion Scholz, Oeldemann, Geyer, Gallenmüller, Stubbe, Wild, Herkersdorf, Carle — Cryptographic Hashing in P4 Data Planes 5

  6. Problem Statement Feasibility of cryptographic hashing in programmable data planes • Hash with cryptographic properties • Hash of complete packet content • Ideally achieving 10 GbE line-rate • Software and hardware P4 targets Scholz, Oeldemann, Geyer, Gallenmüller, Stubbe, Wild, Herkersdorf, Carle — Cryptographic Hashing in P4 Data Planes 6

  7. Choice of Hash Function Cryptography vs. Performance Benchmarks on software system Cryptographic (hash) functions are • Slow ↔ line-rate Hash Cycles Fixed cycles Cycles • Complex ↔ resource consumption on target algorithm per B per packet for 64 B CRC32 0.32 0.00 10.79 Pseudo-cryptographic SipHash Checksum 0.44 0.00 30.06 SipHash-2-4 1.06 56.40 121.10 • Optimized for small inputs BLAKE2b 3.14 35.85 232.77 • Optimized for performance in software HMAC-SHA256 5.57 959.69 1462.13 Scholz, Oeldemann, Geyer, Gallenmüller, Stubbe, Wild, Herkersdorf, Carle — Cryptographic Hashing in P4 Data Planes 7

  8. Available P4 Targets . . . that can be extended with cryptographic hashing • Software: t4p4s (P4ELTE), based on DPDK • Network Processing Unit: Netronome Agilio SmartNIC (NFP-4000) • FPGA: NetFPGA SUME (P4 → NetFPGA) • ASIC: none that we are aware of Scholz, Oeldemann, Geyer, Gallenmüller, Stubbe, Wild, Herkersdorf, Carle — Cryptographic Hashing in P4 Data Planes 8

  9. P4 Hash Integration t4p4s • Trivial: link library, add extern • Added SipHash-2-4 and HMAC-SHA512 (openssl) NFP-4000 • Crypto security accelerator (SHA1): not available on our card • Integrated SipHash-2-4 as extern in variation of C NetFPGA SUME • Externs implemented in Verilog/VHDL • Integrated SipHash-2-4 and SHA3-512 • Problem: • Data passed between P4 program and extern is a single data word • SDNet limit: 600 B input width • No timing closure due to resource congestion Scholz, Oeldemann, Geyer, Gallenmüller, Stubbe, Wild, Herkersdorf, Carle — Cryptographic Hashing in P4 Data Planes 9

  10. P4 Hash Integration NetFPGA Alternative P4 architecture model Limitations • All packets are always hashed • Hash outcome not usable in P4 • Alternatives: • Hashing before P4 pipeline • Second P4 pipeline after hashing core • Traffic manager • SHA3-512 core uses 125 MHz → clock domain crossing Scholz, Oeldemann, Geyer, Gallenmüller, Stubbe, Wild, Herkersdorf, Carle — Cryptographic Hashing in P4 Data Planes 10

  11. Measurement Results Setup ◭ ◭ DuT LoadGen ◮ ◮ • Load Generator Disclaimer • CBR traffic of constant packet size • Precise latency measurements • Open-source implementations • Device-under-Test (DuT) • Non-commercial IP cores • Intel Xeon E5-2620 with Intel X540 NIC • Not optimized integration → proof-of-concept • Netronome NFP-4000 SmartNIC • Take performance figures with grain of salt • NetFPGA SUME → conservative numbers • P4 program • L2 forwarder • Hashes complete packets Scholz, Oeldemann, Geyer, Gallenmüller, Stubbe, Wild, Herkersdorf, Carle — Cryptographic Hashing in P4 Data Planes 11

  12. Measurement Results Achievable Throughput t4p4s SipHash t4p4s HMAC SHA512 NetFPGA SipHash NetFPGA SHA3-512 NFP-4000 SipHash 100 80 Throughput [%] 60 40 20 0 64 96 128 512 1024 1500 Packet Size [B] Scholz, Oeldemann, Geyer, Gallenmüller, Stubbe, Wild, Herkersdorf, Carle — Cryptographic Hashing in P4 Data Planes 12

  13. Measurement Results Latency NetFPGA NFP-4000 100 6 Latency [ µ s] Percentage 4 50 2 Baseline NFP-4000 5 % 80 % Baseline SHA3-512 SipHash-2-4 SipHash-2-4 NFP-4000 5 % 80 % 0 0 64 300 600 900 1 , 200 1 , 518 10 0 10 1 10 2 10 3 10 4 Packet Size [B] Latency [log µ s] Stable latency: no long-tail 100 Percentage 50 t4p4s Baseline DPDK 5 % 80 % Typical behavior of software system/DPDK: long-tail SipHash DPDK 5 % 80 % 0 10 0 10 1 10 2 10 3 10 4 Latency [log µ s] Scholz, Oeldemann, Geyer, Gallenmüller, Stubbe, Wild, Herkersdorf, Carle — Cryptographic Hashing in P4 Data Planes 13

  14. Measurement Results Resource Utilization Does the program fit on the target? • t4p4s: trivial • NFP-4000: no restrictions enountered • NetFPGA: LUTs Registers BRAM Abs. % Abs. % Abs. [kB] % Baseline 64,533 14.90 109,783 12.67 16,362 30.92 SipHash-2-4 66,380 15.32 114,282 13.19 17,460 32.99 SHA3-512 73,449 16.95 118,689 13.70 17,460 32.99 Scholz, Oeldemann, Geyer, Gallenmüller, Stubbe, Wild, Herkersdorf, Carle — Cryptographic Hashing in P4 Data Planes 14

  15. Conclusion The current use of hash functions in P4 programs • Data structures might be vulnerable to attacks (hash collisions) • Lack of programs/protocols requiring authentication and integrity → Cryptographic hash functions increase applicability of P4 Cryptographic hashing is target, algorithm and use-case dependent • Line-rate possible on hardware targets • Integration for instance by adjusting P4 architecture model • Algorithms might be better on one target than another → no one-size-fits-all solution → P4 specification should recommend family of hash functions, including cryptographic ones Scholz, Oeldemann, Geyer, Gallenmüller, Stubbe, Wild, Herkersdorf, Carle — Cryptographic Hashing in P4 Data Planes 15

Recommend

MiMC: Efficient Encryption and Cryptographic Hashing with Minimal Multiplicative Complexity .

MiMC: Efficient Encryption and Cryptographic Hashing with Minimal Multiplicative Complexity .

MiMC: Efficient Encryption and Cryptographic Hashing with Minimal Multiplicative Complexity . Arnab Roy 1 and Tyge Tiessen 1 ) Technical University of Denmark 1 Royal Holloway, University of London 2 TU Graz 3 1 (joint work with Martin Albrecht

275 views • 26 slides
Overview Intro to Hashing Intro to Hashing Hashing with Chaining Whats hashing?

Overview Intro to Hashing Intro to Hashing Hashing with Chaining Whats hashing?

Overview Intro to Hashing Intro to Hashing Hashing with Chaining Whats hashing? Distribute key/value pairs across bins with a hash function , Hashing Performance Hashing (Application of Probability) which maps elements from

497 views • 3 slides
14. Hashing Hash Tables, Pre-Hashing, Hashing, Resolving Collisions using Chaining, Simple

14. Hashing Hash Tables, Pre-Hashing, Hashing, Resolving Collisions using Chaining, Simple

14. Hashing Hash Tables, Pre-Hashing, Hashing, Resolving Collisions using Chaining, Simple Uniform Hashing, Popular Hash Functions, Table-Doubling, Open Addressing: Probing, Uniform Hashing, Universal Hashing, Perfect Hashing [Ottman/Widmayer,

1.25k views • 98 slides
14. Hashing Hash Tables, Pre-Hashing, Hashing, Resolving Collisions using Chaining, Simple

14. Hashing Hash Tables, Pre-Hashing, Hashing, Resolving Collisions using Chaining, Simple

14. Hashing Hash Tables, Pre-Hashing, Hashing, Resolving Collisions using Chaining, Simple Uniform Hashing, Popular Hash Functions, Table-Doubling, Open Addressing: Probing, Uniform Hashing, Universal Hashing, Perfect Hashing [Ottman/Widmayer,

1.5k views • 58 slides
Hashing Chapter 5 1 Objectives Understand the idea of hashing Compare hashing to sorting

Hashing Chapter 5 1 Objectives Understand the idea of hashing Compare hashing to sorting

Hashing Chapter 5 1 Objectives Understand the idea of hashing Compare hashing to sorting Design a hashtable Identify the applications that require the hashtable data structure Understand the terminology of hashtables Distinguish between

319 views • 14 slides
Intersecting two planes in R 3 . Suppose we have two planes with normal vectors n 1 , n 2

Intersecting two planes in R 3 . Suppose we have two planes with normal vectors n 1 , n 2

Intersecting two planes in R 3 . Suppose we have two planes with normal vectors n 1 , n 2 respectively, and we find a point P which lies in both planes. This tells us right away that the intersection of the planes is not empty, and so it must be a

409 views • 5 slides
Message authentication and cryptographic hashing 2MMC10 Cryptology Andreas H ulsing

Message authentication and cryptographic hashing 2MMC10 Cryptology Andreas H ulsing

Message authentication and cryptographic hashing 2MMC10 Cryptology Andreas H ulsing September 20, 2018 A. H ulsing 2MMC10 Cryptology 1 / 12 Message authentication Sometimes we want more than secrecy! Acknowledgement of receipt,

262 views • 22 slides
New cryptographic goals Data privacy is not the only important cryptographic goal CS 4803

New cryptographic goals Data privacy is not the only important cryptographic goal CS 4803

New cryptographic goals Data privacy is not the only important cryptographic goal CS 4803 It is also important that a receiver is assured Computer and Network Security that the data it receives has come from the sender and has not been

617 views • 5 slides
Name Space Analysis (NSA): Verification of Named Data Network Data Planes Mohammad Jahanian and

Name Space Analysis (NSA): Verification of Named Data Network Data Planes Mohammad Jahanian and

Name Space Analysis (NSA): Verification of Named Data Network Data Planes Mohammad Jahanian and K. K. Ramakrishnan University of California, Riverside ACM ICN 2019 Network Verification is important Network data planes are complex and hard to

630 views • 49 slides
High Dimensional Search Min-Hashing Locality Sensi6ve Hashing

High Dimensional Search Min-Hashing Locality Sensi6ve Hashing

High Dimensional Search Min-Hashing Locality Sensi6ve Hashing Debapriyo Majumdar Data Mining Fall 2014 Indian Statistical Institute Kolkata September 8 and 11, 2014 High Support Rules vs

734 views • 37 slides
Stacking planes precisely Problem: when many planes are stacked on top of each other, errors in

Stacking planes precisely Problem: when many planes are stacked on top of each other, errors in

Stacking planes precisely Problem: when many planes are stacked on top of each other, errors in the thickness of the individual planes will add up Note: we encountered this problem when we wanted to build a precise field cage for a TPC-like

512 views • 4 slides
Lecture 8 HASHING!!!!! Announcements HW3 due Friday! HW4 posted Friday! Today: hashing

Lecture 8 HASHING!!!!! Announcements HW3 due Friday! HW4 posted Friday! Today: hashing

Lecture 8 HASHING!!!!! Announcements HW3 due Friday! HW4 posted Friday! Today: hashing # 1 NIL 22 2 NIL 13 43 3 NIL 9 9 NIL n=9 buckets Outline Hash tables are another sort of data structure that allows fast

966 views • 59 slides
The Case for a Flexible Low-Level Backend for Software Data Planes Sean Choi 1 , Xiang Long 2 ,

The Case for a Flexible Low-Level Backend for Software Data Planes Sean Choi 1 , Xiang Long 2 ,

The Case for a Flexible Low-Level Backend for Software Data Planes Sean Choi 1 , Xiang Long 2 , Muhammad Shahbaz 3 , Skip Booth 4 , Andy Keep 4 , John Marshall 4 , Changhoon Kim 5 1 3 4 2 5 Why software data planes? VM hypervisors VM

633 views • 27 slides
Hashing CSE 373 Data Structures Lecture 10 Readings Reading Chapter 5 4/18/03

Hashing CSE 373 Data Structures Lecture 10 Readings Reading Chapter 5 4/18/03

Hashing CSE 373 Data Structures Lecture 10 Readings Reading Chapter 5 4/18/03 Hashing - Lecture 10 2 The Need for Speed Data structures we have looked at so far Use comparison operations to find items Need O(log N)

602 views • 43 slides
MIN-HASHING AND LOCALITY SENSITIVE HASHING Thanks to: Rajaraman and Ullman, Mining Massive

MIN-HASHING AND LOCALITY SENSITIVE HASHING Thanks to: Rajaraman and Ullman, Mining Massive

MIN-HASHING AND LOCALITY SENSITIVE HASHING Thanks to: Rajaraman and Ullman, Mining Massive Datasets Evimaria Terzi, slides for Data Mining Course. Motivating problem Find duplicate and near-duplicate documents from a web crawl.

652 views • 47 slides
Tes$ng Stateful and Dynamic Data Planes with FlowTest

Tes$ng Stateful and Dynamic Data Planes with FlowTest

Tes$ng Stateful and Dynamic Data Planes with FlowTest Seyed K. Fayaz, Vyas Sekar Mo$va$ng Scenario 1) Keep count of TCP connec$ons per host.

228 views • 6 slides
Hashing (Application of Probability) Ashwinee Panda Final CS 70 Lecture! 9 Aug 2018 Overview

Hashing (Application of Probability) Ashwinee Panda Final CS 70 Lecture! 9 Aug 2018 Overview

Hashing (Application of Probability) Ashwinee Panda Final CS 70 Lecture! 9 Aug 2018 Overview Intro to Hashing Hashing with Chaining Hashing Performance Hash Families Balls and Bins Load Balancing Universal Hashing

726 views • 18 slides
Hashing CptS 223 Advanced Data Structures Larry Holder School of Electrical Engineering and

Hashing CptS 223 Advanced Data Structures Larry Holder School of Electrical Engineering and

Hashing CptS 223 Advanced Data Structures Larry Holder School of Electrical Engineering and Computer Science Washington State University 1 Overview Hashing Technique supporting insertion, deletion and search in average-case

991 views • 53 slides
States on a (Data) Plane Jennifer Rexford Traditional data planes are stateless 1 Software

States on a (Data) Plane Jennifer Rexford Traditional data planes are stateless 1 Software

States on a (Data) Plane Jennifer Rexford Traditional data planes are stateless 1 Software Defined Networks (SDN) Program your network from a logically central point! 2 OpenFlow Rule Tables action match Prio 1 dstip = 10.0.0.1 outport

665 views • 35 slides
CS 310 Advanced Data Structures and Algorithms Hashing June 5, 2018 Mohammad Hadian

CS 310 Advanced Data Structures and Algorithms Hashing June 5, 2018 Mohammad Hadian

CS 310 Advanced Data Structures and Algorithms Hashing June 5, 2018 Mohammad Hadian Advanced Data Structures and Algorithms June 5, 2018 1 / 27 Hashing Hashing is probably one of the greatest programming ideas ever. It solves one of the

609 views • 27 slides
CS 356 Lecture 2 Cryptographic Tools Spring 2013 Chapter 2 Cryptographic Tools

CS 356 Lecture 2 Cryptographic Tools Spring 2013 Chapter 2 Cryptographic Tools

CS 356 Lecture 2 Cryptographic Tools Spring 2013 Chapter 2 Cryptographic Tools Cryptographic Tools Cryptographic algorithms important element in security services Review various types of elements symmetric encryption secure

1.27k views • 23 slides
Database Systems Index: Hashing Based on slides by Feifei Li, University of Utah Hashing n

Database Systems Index: Hashing Based on slides by Feifei Li, University of Utah Hashing n

Database Systems Index: Hashing Based on slides by Feifei Li, University of Utah Hashing n Hash-based indexes are best for equality selections . Cannot support range searches. n Static and dynamic hashing techniques exist. 2 Static Hashing n #

454 views • 41 slides
06 A: Hashing CS1102S: Data Structures and Algorithms Martin Henz February 23, 2010 Generated on

06 A: Hashing CS1102S: Data Structures and Algorithms Martin Henz February 23, 2010 Generated on

Review and Motivation Hashing Strings Separate Chaining Hash Tables without Linked Lists Rehashing Puzzlers 06 A: Hashing CS1102S: Data Structures and Algorithms Martin Henz February 23, 2010 Generated on Tuesday 23 rd February, 2010, 12:01

849 views • 59 slides
Lecture #2: Advanced hashing and concentration bounds o Bloom filters o Cuckoo hashing o Load

Lecture #2: Advanced hashing and concentration bounds o Bloom filters o Cuckoo hashing o Load

outline Lecture #2: Advanced hashing and concentration bounds o Bloom filters o Cuckoo hashing o Load balancing o Tail bounds Bloom filters Idea: For the sake of efficiency, sometime we allow our data structure to make mistakes Bloom filter:

712 views • 68 slides

More recommend