FPGA-based Secured OpenFlow Switch

Lecture DEI Series

(partnering with IEEE Student Branch and IEEE Computer Society Student Branch Chapter (https://up.ieee-pt.org/))

Date: May 2nd

Time: 14:30

Room: I-105

Speaker: Cuong Pham-Quoc

Affiliation: Faculty of Computer Science and Engineering, Ho Chi Minh City University of Technology, Vietnam National University – Ho Chi Minh City, Vietnam


In this talk, we present our secured system based on FPGA devices for OpenFlow switch devices, a popular data plane implementation of SDN networks. We also construct an open framework for enhancing the OpenFlow-based SDN system that can detect and prevent some network attacks. With DDoS attack types, we build three modules including Ingress/Egress filtering, Hop Count filtering, and SYN defender that are able to block SYN flood attacks at very high speeds. We implement our first prototyped switch on a NetFPGA-10G board that includes the Xilinx Virtex-5 xc5vtx240t FPGA device. The switch can operate at the frequency of 100.256MHz. The experimental results show that the switch forwarding throughput is ranging from 27.31Gbps to 39.48Gbps (when processing input packets ranging from 62-Byte to 1500-Byte) in half duplex mode. In DDoS attacks detection/prevention experiments, the switch can handle attacks with detection rate of 100% and the false positive rate of approximate 0.74% while the SYN defender can prevent SYN flood attacks at up to 27.31Gbps.

Short Bio

Cuong Pham-Quoc received the Bachelor of Engineering (BEng) degree in 2007, and the MEng degree in 2009, both from the Faculty of Computer Science and Engineering, the Ho Chi Minh City University of Technology (HCMUT), Vietnam National University – Ho Chi Minh City. He obtained his PhD degree from Delft University of Technology in 2015 under the supervision of Prof. Koen Bertels and Dr. Zaid Al-Ars. Dr. Cuong came back HCMUT right after getting his PhD degree. Currently, he is serving as the head of Computer Engineering Department, Faculty of Computer Science and Engineering. His research interests include: Reconfigurable Heterogenous Accelerators, Internet of Things, Multi-/Many-core architecture, High-performance computing, and Architecture and Technology for Smart cities.


