HIGH THROUGHPUT AND LOW AREA COST FPGA-BASED SIGNATURE MATCH CIRCUIT FOR NETWORK INTRUSION DETECTION

被引:3
作者
Hwang, Wen-Jyi [2 ]
Ou, Chien-Min [1 ]
Shih, Ying-Nan [2 ]
Lo, Chia-Tien Dan [3 ]
机构
[1] Ching Yun Univ, Dept Engn, Chungli 320, Taiwan
[2] Natl Taiwan Normal Univ, Dept Comp Sci & Informat Engn, Taipei 117, Taiwan
[3] Univ Texas San Antonio, Dept Comp Sci, San Antonio, TX 78249 USA
来源
JOURNAL OF THE CHINESE INSTITUTE OF ENGINEERS | 2009年 / 32卷 / 03期
关键词
network intrusion detection system; FPGA implementation; pattern matching;
D O I
10.1080/02533839.2009.9671520
中图分类号
T [工业技术];
学科分类号
08 ;
摘要
A novel FPGA-based signature match circuit serving as the core of a hardware-based network intrusion detection system (NIDS) is presented in this paper. The circuit is based on simple shift registers and signature decoders for efficient hardware signature matches. As compared with related work, experimental results show that the proposed work achieves high throughput and uses few hardware resources in the FPGA implementations of NIDS systems.
引用
收藏
页码:397 / 405
页数:9
相关论文
共 14 条
[1]  
ALDWAIRI M, 2005, ACM SIGARCH COMPUTER, V33, P99
[2]  
[Anonymous], P 11 ANN ACM SIGDA I
[3]   A NEW APPROACH TO TEXT SEARCHING [J].
BAEZAYATES, R ;
GONNET, GH .
COMMUNICATIONS OF THE ACM, 1992, 35 (10) :74-82
[4]   Deep packet filter with dedicated logic and read only memories [J].
Cho, YH ;
Mangione-Smith, WH .
12TH ANNUAL IEEE SYMPOSIUM ON FIELD-PROGRAMMABLE CUSTOM COMPUTING MACHINES, PROCEEDINGS, 2004, :125-134
[5]   Scalable pattern matching for high speed networks [J].
Clark, CR ;
Schimmel, DE .
12TH ANNUAL IEEE SYMPOSIUM ON FIELD-PROGRAMMABLE CUSTOM COMPUTING MACHINES, PROCEEDINGS, 2004, :249-257
[6]  
Clark CR, 2003, LECT NOTES COMPUT SC, V2778, P956
[7]   Assisting network intrusion detection with reconfigurable hardware [J].
Hutchings, BL ;
Franklin, R ;
Carver, D .
10TH ANNUAL IEEE SYMPOSIUM ON FIELD-PROGRAMMABLE CUSTOM COMPUTING MACHINES, PROCEEDINGS, 2002, :111-120
[8]   Optimization of pattern matching circuits for, regular expression on FPGA [J].
Lin, Cheng-Hung ;
Huang, Chih-Tsun ;
Jiang, Chang-Ping ;
Chang, Shih-Chieh .
IEEE TRANSACTIONS ON VERY LARGE SCALE INTEGRATION (VLSI) SYSTEMS, 2007, 15 (12) :1303-1310
[9]  
Moscola J, 2003, ANN IEEE SYM FIELD P, P31
[10]  
RAMIREZ T, 2004, 2004 INT COMP S ICS, P1224
12