Network intrusion detection based on shift-or circuit

被引：0

作者：

Roan, Huang-Chun ^{[1
]}

Hwang, Wen-Jyi ^{[1
]}

Huang, Wei-Jhih ^{[1
]}

Lo, Chia-Tien Dan ^{[2
]}

机构：

[1] Natl Taiwan Normal Univ, Dept Comp Sci & Informat Engn, Taipei 117, Taiwan

[2] Univ Texas San Antonio, Dept Comp Sci, San Antonio, TX 78249 USA

来源：

JOURNAL OF INFORMATION SCIENCE AND ENGINEERING | 2008年 / 24卷 / 04期

关键词：

network intrusion detection system; FPGA implementation; pattern matching; shift-or algorithm; string searching;

D O I：

暂无

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

This paper introduces a novel FPGA-based signature match co-processor that can serve as the core of a hardware-based network intrusion detection system (NIDS). The key feature of the signature match co-processor is an architecture based on the shift-or algorithm, which employs simple shift registers, or-gates, and ROMs where patterns are stored. As compared with related work, experimental results show that the proposed work achieves higher throughput and less hardware resource in the FPGA implementations of NIDS systems.

引用

页码：1229 / 1239

页数：11

共 8 条

[1] [Anonymous], P 11 ANN ACM SIGDA I
[2] A NEW APPROACH TO TEXT SEARCHING
BAEZAYATES, R
GONNET, GH
[J]. COMMUNICATIONS OF THE ACM, 1992, 35 (10) : 74 - 82
[3] Assisting network intrusion detection with reconfigurable hardware
Hutchings, BL
Franklin, R
Carver, D
[J]. 10TH ANNUAL IEEE SYMPOSIUM ON FIELD-PROGRAMMABLE CUSTOM COMPUTING MACHINES, PROCEEDINGS, 2002, : 111 - 120
[4] Moscola J, 2003, ANN IEEE SYM FIELD P, P31
[5] RAMIREZ T, 2004, P INT COMP S
[6] Singaraju J, 2005, ANN IEEE SYM FIELD P, P235
[7] *SNORT, SNORT OFF
[8] Pre-decoded CAMs for efficient and high-speed NIDS pattern matching
Sourdis, I
Pnevmatikatos, D
[J]. 12TH ANNUAL IEEE SYMPOSIUM ON FIELD-PROGRAMMABLE CUSTOM COMPUTING MACHINES, PROCEEDINGS, 2004, : 258 - 267

← 1 →