Attending this event?
View analytic
Thursday, November 16 • 10:00am - 10:20am

Sign up or log in to save this to your schedule and see who's attending!

Log in to leave feedback.
This session will focus on the current effort to re-introduce IPsec functionality in OVS userspace with OVS DPDK. The presentation will look at the following aspects:

1. Target use case: overview of the motivation to re-introduce IPsec to OVS in Userspace.
2. Proposed IPsec functionality: IPsec modes, crypto/authentication cipher support, Security Association support.
3. Implementation design and considerations including:
a. HW vs SW
b. Security Key Establishment
c. Example of packet encryption/decryption.
4. Performance metrics: metrics available from current IPsec work including HW QAT and SW VDEVs, various cipher combinations.
5. Future work and existing gaps including:
a. Expanding IPsec modes and ciphers.
b. 3rd party support for IKEv2.
c. OVS architecture changes for improved crypto performance.


Thursday November 16, 2017 10:00am - 10:20am