System architecture for deep packet inspection in high-speed networks
Title | System architecture for deep packet inspection in high-speed networks |
Publication Type | Conference Paper |
Year of Publication | 2017 |
Authors | Khazankin, G. R., Komarov, S., Kovalev, D., Barsegyan, A., Likhachev, A. |
Conference Name | 2017 Siberian Symposium on Data Science and Engineering (SSDSE) |
Publisher | IEEE |
ISBN Number | 978-1-5386-1593-5 |
Keywords | bit rate 80.0 Gbit/s, Central Processing Unit, Computer architecture, computer network, computer network security, computing devices, CPU, CUDA, Data analysis, data communication, data transmission networks, data volume real-time processing, deep packet inspection, DMA, DPDK, DPI, firewall, GPUDirect, graphics processing unit, graphics processing units, Hardware, hardware tools, hardware-software solution, high-speed networks, Inspection, Mellanox, Napatech, Nvidia, PeerDirect, pubcrawl, real-time data analysis, resilience, Resiliency, Scalability, software requirements, system architecture, Zero-copy |
Abstract | To solve the problems associated with large data volume real-time processing, heterogeneous systems using various computing devices are increasingly used. The characteristic of solving this class of problems is related to the fact that there are two directions for improving methods of real-time data analysis: the first is the development of algorithms and approaches to analysis, and the second is the development of hardware and software. This article reviews the main approaches to the architecture of a hardware-software solution for traffic capture and deep packet inspection (DPI) in data transmission networks with a bandwidth of 80 Gbit/s and higher. At the moment there are software and hardware tools that allow designing the architecture of capture system and deep packet inspection: 1) Using only the central processing unit (CPU); 2) Using only the graphics processing unit (GPU); 3) Using the central processing unit and graphics processing unit simultaneously (CPU + GPU). In this paper, we consider these key approaches. Also attention is paid to both hardware and software requirements for the architecture of solutions. Pain points and remedies are described. |
URL | https://ieeexplore.ieee.org/document/8071958 |
DOI | 10.1109/SSDSE.2017.8071958 |
Citation Key | khazankin_system_2017 |
- PeerDirect
- graphics processing units
- Hardware
- hardware tools
- hardware-software solution
- high-speed networks
- Inspection
- Mellanox
- Napatech
- Nvidia
- graphics processing unit
- pubcrawl
- real-time data analysis
- resilience
- Resiliency
- Scalability
- software requirements
- system architecture
- Zero-copy
- data communication
- Central Processing Unit
- computer architecture
- computer network
- computer network security
- computing devices
- CPU
- CUDA
- data analysis
- bit rate 80.0 Gbit/s
- data transmission networks
- data volume real-time processing
- deep packet inspection
- DMA
- DPDK
- dpi
- firewall
- GPUDirect