TU Darmstadt / ULB / TUbiblio

Malacoda: towards high-level compilation of network security applications on reconfigurable hardware

Mühlbach, Sascha ; Koch, Andreas (2012)
Malacoda: towards high-level compilation of network security applications on reconfigurable hardware.
Austin, Texas, USA
doi: 10.1145/2396556.2396604
Conference or Workshop Item, Bibliographie

Abstract

While the use of reconfigurable computing for tasks such as packet header processing or deep packet-inspection in high-speed networks has been widely studied, efforts to extend the technology to application-level processing have only recently been made. One issue that has prevented wider use of reconfigurable platforms in that context is the unfamiliar programming environment: Such systems commonly require expertise in computer architecture and digital logic design generally foreign to networking experts. To make the technology more accessible to potential users, we present the high-level domain-specific language Malacoda for application-level network processing and an associated compiler that automatically translates Malacoda descriptions into high-performance hardware blocks for insertion into an FPGA-based processing platform. We evaluate our approach on the use-case of a hardware-accelerated secure honeypot-in-a-box, programmed in Malacoda, and implemented on the NetFPGA 10G board. Results from a live-test of the system connected to a 10G Internet uplink complete the evaluation.

Item Type: Conference or Workshop Item
Erschienen: 2012
Creators: Mühlbach, Sascha ; Koch, Andreas
Type of entry: Bibliographie
Title: Malacoda: towards high-level compilation of network security applications on reconfigurable hardware
Language: German
Date: October 2012
Publisher: ACM
Book Title: Proceedings of the eighth ACM/IEEE symposium on Architectures for networking and communications systems
Series: ANCS '12
Event Location: Austin, Texas, USA
DOI: 10.1145/2396556.2396604
Abstract:

While the use of reconfigurable computing for tasks such as packet header processing or deep packet-inspection in high-speed networks has been widely studied, efforts to extend the technology to application-level processing have only recently been made. One issue that has prevented wider use of reconfigurable platforms in that context is the unfamiliar programming environment: Such systems commonly require expertise in computer architecture and digital logic design generally foreign to networking experts. To make the technology more accessible to potential users, we present the high-level domain-specific language Malacoda for application-level network processing and an associated compiler that automatically translates Malacoda descriptions into high-performance hardware blocks for insertion into an FPGA-based processing platform. We evaluate our approach on the use-case of a hardware-accelerated secure honeypot-in-a-box, programmed in Malacoda, and implemented on the NetFPGA 10G board. Results from a live-test of the system connected to a 10G Internet uplink complete the evaluation.

Uncontrolled Keywords: Hardware, Protocols, Security, Routing, Internet, Context, Hardware design languages
Identification Number: TUD-CS-2012-0384
Divisions: Profile Areas > Cybersecurity (CYSEC)
Profile Areas
Date Deposited: 28 Aug 2017 14:03
Last Modified: 15 May 2018 10:33
PPN:
Export:
Suche nach Titel in: TUfind oder in Google
Send an inquiry Send an inquiry

Options (only for editors)
Show editorial Details Show editorial Details