Cryptographic hashing in P4 data planes

Dominik Scholz, Andreas Oeldemann, Fabien Geyer, Sebastian Gallenmuller, Henning Stubbe, Thomas Wild, Andreas Herkersdorf, Georg Carle

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

29 Scopus citations

Abstract

P4 introduces a standardized, universal way for data plane programming. Secure and resilient communication typically involves the processing of payload data and specialized cryptographic hash functions. We observe that current P4 targets lack the support for both. Therefore, applications and protocols, which require message authentication codes or hashing structures that are resilient against attacks such as denial-of-service, cannot be implemented. To enable authentication and resilience, we make the case for extending P4 targets with cryptographic hash functions. We propose an extension of the P4 Portable Switch Architecture for cryptographic hashes and discuss our prototype implementations for three different P4 target platforms: CPU, NPU, and FPGA. To assess the practical applicability, we conduct a performance evaluation and analyze the resource consumption. Our prototype implementations show that cryptographic hashing can be integrated efficiently. We cannot identify a single hash function delivering satisfying performance on all investigated platforms. Therefore, we recommend a set of hash functions to optimize target-specific performance.

Original languageEnglish
Title of host publication2019 ACM/IEEE Symposium on Architectures for Networking and Communications Systems, ANCS 2019
PublisherInstitute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)9781728143873
DOIs
StatePublished - Sep 2019
Event2019 ACM/IEEE Symposium on Architectures for Networking and Communications Systems, ANCS 2019 - Cambridge, United Kingdom
Duration: 24 Sep 201925 Sep 2019

Publication series

Name2019 ACM/IEEE Symposium on Architectures for Networking and Communications Systems, ANCS 2019

Conference

Conference2019 ACM/IEEE Symposium on Architectures for Networking and Communications Systems, ANCS 2019
Country/TerritoryUnited Kingdom
CityCambridge
Period24/09/1925/09/19

Keywords

  • Data Plane Programming
  • Hash function
  • P4
  • Performance Evaluation

Fingerprint

Dive into the research topics of 'Cryptographic hashing in P4 data planes'. Together they form a unique fingerprint.

Cite this