File Download
There are no files associated with this item.
Supplementary
-
Citations:
- Scopus: 0
- Appears in Collections:
Conference Paper: Design and evaluation of parallel string matching algorithms for network intrusion detection systems
| Title | Design and evaluation of parallel string matching algorithms for network intrusion detection systems |
|---|---|
| Authors | |
| Issue Date | 2007 |
| Publisher | Springer Verlag. The Journal's web site is located at http://springerlink.com/content/105633/ |
| Citation | The 2007 IFIP International Conference on Network and Parallel Computing (NPC 2007), Dalian, China, 18-21 September 2007. In
Lecture Notes In Computer Science, 2007, v. 4672, p. 344-353 How to Cite? |
| Abstract | Network security is very important for Internet-connected hosts because of the widespread of worms, viruses, DoS attacks, etc. As a result, a network intrusion detection system (NIDS) is typically needed to detect network attacks by packet inspection. For an NIDS system, string matching is the computation-intensive task and hence the performance bottleneck, since every byte of the payload of packets must be checked against numerous predefined signature strings, which may occur arbitrarily in the payload. In this paper, we present the design and evaluation of parallel string matching algorithms targeting hardware implementation on FPGAs and software implementation on multi-core processors. Experimental results show that, on a multi-processor system, the multi-threaded implementation of the proposed parallel string matching algorithm can reduce string matching time by more than 40%. © IFIP International Federation for Information Processing 2007. |
| Persistent Identifier | http://hdl.handle.net/10722/158488 |
| ISSN | 2020 SCImago Journal Rankings: 0.249 |
| References |
| DC Field | Value | Language |
|---|---|---|
| dc.contributor.author | Kwok, TO | en_US |
| dc.contributor.author | Kwok, YK | en_US |
| dc.date.accessioned | 2012-08-08T08:59:54Z | - |
| dc.date.available | 2012-08-08T08:59:54Z | - |
| dc.date.issued | 2007 | en_US |
| dc.identifier.citation | The 2007 IFIP International Conference on Network and Parallel Computing (NPC 2007), Dalian, China, 18-21 September 2007. In Lecture Notes In Computer Science, 2007, v. 4672, p. 344-353 | en_US |
| dc.identifier.issn | 0302-9743 | en_US |
| dc.identifier.uri | http://hdl.handle.net/10722/158488 | - |
| dc.description.abstract | Network security is very important for Internet-connected hosts because of the widespread of worms, viruses, DoS attacks, etc. As a result, a network intrusion detection system (NIDS) is typically needed to detect network attacks by packet inspection. For an NIDS system, string matching is the computation-intensive task and hence the performance bottleneck, since every byte of the payload of packets must be checked against numerous predefined signature strings, which may occur arbitrarily in the payload. In this paper, we present the design and evaluation of parallel string matching algorithms targeting hardware implementation on FPGAs and software implementation on multi-core processors. Experimental results show that, on a multi-processor system, the multi-threaded implementation of the proposed parallel string matching algorithm can reduce string matching time by more than 40%. © IFIP International Federation for Information Processing 2007. | en_US |
| dc.language | eng | en_US |
| dc.publisher | Springer Verlag. The Journal's web site is located at http://springerlink.com/content/105633/ | en_US |
| dc.relation.ispartof | Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) | en_US |
| dc.title | Design and evaluation of parallel string matching algorithms for network intrusion detection systems | en_US |
| dc.type | Conference_Paper | en_US |
| dc.identifier.email | Kwok, YK: ykwok@eee.hku.hk | en_US |
| dc.identifier.authority | Kwok, YK=rp00128 | en_US |
| dc.description.nature | link_to_subscribed_fulltext | en_US |
| dc.identifier.scopus | eid_2-s2.0-38149114079 | en_US |
| dc.identifier.hkuros | 131462 | - |
| dc.relation.references | http://www.scopus.com/mlt/select.url?eid=2-s2.0-38149114079&selection=ref&src=s&origin=recordpage | en_US |
| dc.identifier.volume | 4672 | en_US |
| dc.identifier.spage | 344 | en_US |
| dc.identifier.epage | 353 | en_US |
| dc.publisher.place | Germany | en_US |
| dc.identifier.scopusauthorid | Kwok, TTO=7006475931 | en_US |
| dc.identifier.scopusauthorid | Kwok, YK=7101857718 | en_US |
| dc.customcontrol.immutable | sml 151120 - merged | - |
| dc.identifier.issnl | 0302-9743 | - |