Inocybe Technologies and Noviflow, are pleased to invite you to our next meetup event!
This meetup we'll be focusing on SDN/OpenFlow based Cybersecurity using NoviWare & OpenFlow Controller, as well as, Certificate-based Authentication in SDN Environments.
There will be two presentations and one demonstration, followed by an informal hangout with food and beverages readily available.
7:00 - 7:30: Certificate-based Authentication in SDN Environments, Mohamed El-Serngawy, Senior Software Engineer at Inocybe Technologies
7:30 - 8:30: Informal Hangout with Food and Beverages
NoviFlow’s Presentation Abstract:
OpenFlow 1.3/1.4/1.5 capabilities implemented on NPU based programmable forwarding plane.
• Connectivity between controller and Switch
• Add/Delete/Modify Flow Entries
• Multipart & Asynchronous OpenFlow Messages
NoviFlow’s Demo Description:
In this session, NoviFlow will demonstrate live how NoviSwitch programmable forwarding plane products empower and dramatically accelerate cybersecurity applications, enabling our customers to actively mitigate, avoid and even eliminate malware. The demonstration will showcase several key cybersecurity enhancing features of NoviFlow’s network processor-based platform including:
• up to 16 million ACL (access control list) entries, for handling huge populations of clients and devices,
• user-definable IP and UDP packet payload matching, for classification and filtering of flows at line-rates up to 100 Gbps,
• in-switch user-definable hash tables, supporting fully symmetrical and non-destructive load balancing to even thousands of stateful servers, such as cybersecurity DPI servers.
These capabilities, when combined with our embedded NOS (NoviWare) industry leading implementation of OpenFlow (1.3, 1.4 and 1.5), enable network managers to plug the security gaps and vulnerabilities inherent in traditional networking equipment that are exploited by viruses, bots and other threats to network security. Furthermore, NoviSwitch accomplishes in a single box at the network’s edge what used to require a whole chain of expensive devices, reducing the complexity of the network, overcoming vendor/systems lock-in, and optimizing both CAPEX and OPEX.
The flexibility of this approach also encompasses a wide range of network applications and services, including CORD, EPC, Edge Routing, Network Tapping, Telemetry, Load Balancing, Service Chaining, and this approach scales independently on a wide variety of characteristics such as number of users, forwarding or controller capacity, bandwidth, etc.
Inocybe’s Presentation Abstract:
In software defined networking (SDN) environments, certificate-based authentication becomes more and more important to authorize and authenticate the connected network applications and network devices. In this presentation, I will give a background on the Public Key Infrastructure PKI and its consideration for SDN environments. I will demonstrate three possible PKI structures for SDN environments and finally, I will explain the challenges that we had with OpenDaylight as an SDN controller to adopt the PKI consideration in an SDN environment.
Mohamed El-Serngawy’s Biography:
I'm a Senior Software Engineer and researcher working at Inocybe Technologies. I'm contributing to several different projects in OpenDaylight such AAA, COE, OVSDB, OpenFlow and unimngr. I have wide-ranging experience in software design and implementation, especially with respect to network security and mobile platform privacy. My earlier work had a strong focus on SDN security. Lately, my point of focus is primarily on cloud platform integration with OpenDaylight.