final changes to ILA and README

fpgasystems · Jun 28, 2024 · ec30a04 · ec30a04
1 parent 5c0b07c
commit ec30a04
Show file tree

Hide file tree

Showing 2 changed files with 6 additions and 3 deletions.
diff --git a/README.md b/README.md
@@ -1,4 +1,4 @@
-# AMD-OHC-2024: DPI for RDMA on FPGAs at linerate
+# RoCE Balboa - Payload-based Intrusion Detection for RDMA-traffic with ML-models
 Our contribution to the AMD Open Hardware Contest: A ML-based Deep Packet Inspection for RDMA-networking on FPGAs
 
 ## General description of the project 
@@ -12,6 +12,9 @@ The main contributions of this project include the selection of adequate Machine
     <img src="img/Architecture_Diagram.jpg" width = 600>
 </picture>
 
+Thus, our main contribution is the integration of a Ml-based DPI for the detection of potentially malicious executables in packet payloads at line rate in network traffic. The relevant added files to the existing design can be found at `/artifacts/coyote-experiments/hw/hdl/network/rdma` and include `intrusion_detection_decider.sv`, `common/payload_extractor.sv` and all the `myproject_*.sv`-files. Adaptations were necessary to `roce_stack.sv` as well as for the HLS-implementation of the RDMA-packet processing pipeline in `/artifacts/coyote-experiments/hw/services/network/hls/rocev2`. 
+As required for this competition, we paid great attention to the "openness" and re-usability of our design: Since our hardware-stack communicates via the standardized AXI4-Stream-interface at 512 Bit width and looks at raw payloads to generally detect x86-executables, it can easily be adopted to any kind of FPGA-based networking stack for Deep Packet Inspection as well as in other security-related domains of data-stream computing. 
+
 ## Hardware Prerequisites 
 Since this project is built around a networking service, at least two connected servers are required for the replication of our experiments. Switched networks are acceptable and have been extensively tested. The targeted FPGA-platform is a `Alveo U55C`-accelerator card, connected via PCIe to the server. For our experiments about the cross-compatibility of our design in heterogeneous networking setups a dedicated ASIC-based NIC is required - our provided programs and scripts target a `Mellanox Connect-X5` card. 
 On the software side, we developed the hardware using the `Vivado 2022.1` suite - licenses for the `Vivado / Vitis platform` are required to build and deploy our design. Furthermore, the [UltraScale+ Integrated 100G Ethernet Subsystem](https://www.xilinx.com/products/intellectual-property/cmac_usplus.html) license is required for the networking functionality. On top of that, the typical Linux-utilities such as fairly recent versions of cmake, gcc and python are used for various parts of the build process of our project. 

diff --git a/artifacts/coyote-experiments/hw/hdl/network/rdma/roce_stack.sv b/artifacts/coyote-experiments/hw/hdl/network/rdma/roce_stack.sv
@@ -207,7 +207,7 @@ intrusion_detection_decider inst_intrusion_detection_decider (
 );
 
 // Create an ILA for observing the ML-decider 
-ila_ml inst_ila_ml (
+/* ila_ml inst_ila_ml (
     .clk(nclk), 
     .probe0(s_axis_rx.tvalid),          // 1
     .probe1(s_axis_rx.tlast),           // 1
@@ -230,7 +230,7 @@ ila_ml inst_ila_ml (
     .probe18(roce_to_icrc.tlast),       // 1
     .probe19(roce_to_icrc.tkeep),       // 64
     .probe20(roce_to_icrc.tdata)        // 512
-);
+); */ 
 
 
 // ChipScope around the ICRC