File Download

There are no files associated with this item.

  Links for fulltext
     (May Require Subscription)
Supplementary

Conference Paper: Design and evaluation of parallel string matching algorithms for network intrusion detection systems

TitleDesign and evaluation of parallel string matching algorithms for network intrusion detection systems
Authors
Issue Date2007
PublisherSpringer Verlag. The Journal's web site is located at http://springerlink.com/content/105633/
Citation
The 2007 IFIP International Conference on Network and Parallel Computing (NPC 2007), Dalian, China, 18-21 September 2007. In Lecture Notes In Computer Science, 2007, v. 4672, p. 344-353 How to Cite?
AbstractNetwork security is very important for Internet-connected hosts because of the widespread of worms, viruses, DoS attacks, etc. As a result, a network intrusion detection system (NIDS) is typically needed to detect network attacks by packet inspection. For an NIDS system, string matching is the computation-intensive task and hence the performance bottleneck, since every byte of the payload of packets must be checked against numerous predefined signature strings, which may occur arbitrarily in the payload. In this paper, we present the design and evaluation of parallel string matching algorithms targeting hardware implementation on FPGAs and software implementation on multi-core processors. Experimental results show that, on a multi-processor system, the multi-threaded implementation of the proposed parallel string matching algorithm can reduce string matching time by more than 40%. © IFIP International Federation for Information Processing 2007.
Persistent Identifierhttp://hdl.handle.net/10722/158488
ISSN
2023 SCImago Journal Rankings: 0.606
References

 

DC FieldValueLanguage
dc.contributor.authorKwok, TOen_US
dc.contributor.authorKwok, YKen_US
dc.date.accessioned2012-08-08T08:59:54Z-
dc.date.available2012-08-08T08:59:54Z-
dc.date.issued2007en_US
dc.identifier.citationThe 2007 IFIP International Conference on Network and Parallel Computing (NPC 2007), Dalian, China, 18-21 September 2007. In Lecture Notes In Computer Science, 2007, v. 4672, p. 344-353en_US
dc.identifier.issn0302-9743en_US
dc.identifier.urihttp://hdl.handle.net/10722/158488-
dc.description.abstractNetwork security is very important for Internet-connected hosts because of the widespread of worms, viruses, DoS attacks, etc. As a result, a network intrusion detection system (NIDS) is typically needed to detect network attacks by packet inspection. For an NIDS system, string matching is the computation-intensive task and hence the performance bottleneck, since every byte of the payload of packets must be checked against numerous predefined signature strings, which may occur arbitrarily in the payload. In this paper, we present the design and evaluation of parallel string matching algorithms targeting hardware implementation on FPGAs and software implementation on multi-core processors. Experimental results show that, on a multi-processor system, the multi-threaded implementation of the proposed parallel string matching algorithm can reduce string matching time by more than 40%. © IFIP International Federation for Information Processing 2007.en_US
dc.languageengen_US
dc.publisherSpringer Verlag. The Journal's web site is located at http://springerlink.com/content/105633/en_US
dc.relation.ispartofLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)en_US
dc.titleDesign and evaluation of parallel string matching algorithms for network intrusion detection systemsen_US
dc.typeConference_Paperen_US
dc.identifier.emailKwok, YK: ykwok@eee.hku.hken_US
dc.identifier.authorityKwok, YK=rp00128en_US
dc.description.naturelink_to_subscribed_fulltexten_US
dc.identifier.scopuseid_2-s2.0-38149114079en_US
dc.identifier.hkuros131462-
dc.relation.referenceshttp://www.scopus.com/mlt/select.url?eid=2-s2.0-38149114079&selection=ref&src=s&origin=recordpageen_US
dc.identifier.volume4672en_US
dc.identifier.spage344en_US
dc.identifier.epage353en_US
dc.publisher.placeGermanyen_US
dc.identifier.scopusauthoridKwok, TTO=7006475931en_US
dc.identifier.scopusauthoridKwok, YK=7101857718en_US
dc.customcontrol.immutablesml 151120 - merged-
dc.identifier.issnl0302-9743-

Export via OAI-PMH Interface in XML Formats


OR


Export to Other Non-XML Formats