Racyus D. G. Pacífico, M. Vieira, L. F. S. Duarte, J. Nacif
{"title":"作为业务卸载到SmartNIC上","authors":"Racyus D. G. Pacífico, M. Vieira, L. F. S. Duarte, J. Nacif","doi":"10.1109/LATINCOM56090.2022.10000473","DOIUrl":null,"url":null,"abstract":"Data security has become a crucial factor in the context of computer networks. From 2015 until 2021, the damage caused by the theft of information on the Internet was around 6 trillion dollars. In this scenario, Intrusion Detection Systems (IDSs) are essential elements in the search for threats. However, usually, IDSs run on conventional computers with little processing power and high operating costs. Offloading of network functions in SmartNICs and the Serverless paradigm emerge as efficient solutions because they combine flexibility and programmability. This paper proposes an IDS Serverless with offloading of user-defined filters in SmartNIC Netronome. We created different filters using the eBPF technology to validate the system. Our results show that it is possible to detect vulnerabilities at line rate.","PeriodicalId":221354,"journal":{"name":"2022 IEEE Latin-American Conference on Communications (LATINCOM)","volume":"72 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-11-30","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"Function as a Service Offloaded to a SmartNIC\",\"authors\":\"Racyus D. G. Pacífico, M. Vieira, L. F. S. Duarte, J. Nacif\",\"doi\":\"10.1109/LATINCOM56090.2022.10000473\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Data security has become a crucial factor in the context of computer networks. From 2015 until 2021, the damage caused by the theft of information on the Internet was around 6 trillion dollars. In this scenario, Intrusion Detection Systems (IDSs) are essential elements in the search for threats. However, usually, IDSs run on conventional computers with little processing power and high operating costs. Offloading of network functions in SmartNICs and the Serverless paradigm emerge as efficient solutions because they combine flexibility and programmability. This paper proposes an IDS Serverless with offloading of user-defined filters in SmartNIC Netronome. We created different filters using the eBPF technology to validate the system. Our results show that it is possible to detect vulnerabilities at line rate.\",\"PeriodicalId\":221354,\"journal\":{\"name\":\"2022 IEEE Latin-American Conference on Communications (LATINCOM)\",\"volume\":\"72 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2022-11-30\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2022 IEEE Latin-American Conference on Communications (LATINCOM)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/LATINCOM56090.2022.10000473\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2022 IEEE Latin-American Conference on Communications (LATINCOM)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/LATINCOM56090.2022.10000473","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Data security has become a crucial factor in the context of computer networks. From 2015 until 2021, the damage caused by the theft of information on the Internet was around 6 trillion dollars. In this scenario, Intrusion Detection Systems (IDSs) are essential elements in the search for threats. However, usually, IDSs run on conventional computers with little processing power and high operating costs. Offloading of network functions in SmartNICs and the Serverless paradigm emerge as efficient solutions because they combine flexibility and programmability. This paper proposes an IDS Serverless with offloading of user-defined filters in SmartNIC Netronome. We created different filters using the eBPF technology to validate the system. Our results show that it is possible to detect vulnerabilities at line rate.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
