Skip to main content

2016 | OriginalPaper | Buchkapitel

High Speed Network Intrusion Detection System Using FPGA

verfasst von : S. Anuraj, P. Premalatha, T. Gireeshkumar

Erschienen in: Proceedings of the Second International Conference on Computer and Communication Technologies

Verlag: Springer India

Aktivieren Sie unsere intelligente Suche um passende Fachinhalte oder Patente zu finden.

search-config
loading …

Abstract

Modern Network Intrusion detection needs a high-speed interface to analyze the incoming packet. Several network intrusion detection applications detect multiple strings in the payload of a packet by comparing it against predefined pattern set which requires more memory and computation power. To meet this, a dedicated hardware with high processing capacity can be placed at the port of incoming packets. Field Programmable Gate Array (FPGA) is the choice as it can be programmed easily and dynamically for parallel computing. Moreover, FPGA devices support at high-speed interface and are capable of providing better processing capability than other device; also it can be reprogrammed when it is needed. This paper proposes a new alternative approach to leaf attaching algorithm to improve the memory efficiency of algorithm.

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

  • über 102.000 Bücher
  • über 537 Zeitschriften

aus folgenden Fachgebieten:

  • Automobil + Motoren
  • Bauwesen + Immobilien
  • Business IT + Informatik
  • Elektrotechnik + Elektronik
  • Energie + Nachhaltigkeit
  • Finance + Banking
  • Management + Führung
  • Marketing + Vertrieb
  • Maschinenbau + Werkstoffe
  • Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

  • über 67.000 Bücher
  • über 390 Zeitschriften

aus folgenden Fachgebieten:

  • Automobil + Motoren
  • Bauwesen + Immobilien
  • Business IT + Informatik
  • Elektrotechnik + Elektronik
  • Energie + Nachhaltigkeit
  • Maschinenbau + Werkstoffe




 

Jetzt Wissensvorsprung sichern!

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

  • über 67.000 Bücher
  • über 340 Zeitschriften

aus folgenden Fachgebieten:

  • Bauwesen + Immobilien
  • Business IT + Informatik
  • Finance + Banking
  • Management + Führung
  • Marketing + Vertrieb
  • Versicherung + Risiko




Jetzt Wissensvorsprung sichern!

Literatur
1.
Zurück zum Zitat Roesh, S.M.: Snort-light weight intrusion detection for networks. In: Proceeding of LISA, vol. 99, pp. 299–238 Roesh, S.M.: Snort-light weight intrusion detection for networks. In: Proceeding of LISA, vol. 99, pp. 299–238
2.
Zurück zum Zitat Qingbo Wang and Viktor K Prasanna. Multi-core architecture on fpga for large dictionary string matching. In: FCCM’0, 17th IEEE Symposium on Field Programmable Custom Computing Machines, pp. 96–103, IEEE (2009) Qingbo Wang and Viktor K Prasanna. Multi-core architecture on fpga for large dictionary string matching. In: FCCM’0, 17th IEEE Symposium on Field Programmable Custom Computing Machines, pp. 96–103, IEEE (2009)
4.
Zurück zum Zitat Song, H., Lockwood, J.W.: Efficient packet classification for network intrusion detection using fpga. In: Proceedings of the 2005 ACM/SIGDA 13th International Symposium on Field-programmable Gate Arrays, pp. 238–245. ACM (2005) Song, H., Lockwood, J.W.: Efficient packet classification for network intrusion detection using fpga. In: Proceedings of the 2005 ACM/SIGDA 13th International Symposium on Field-programmable Gate Arrays, pp. 238–245. ACM (2005)
5.
Zurück zum Zitat Pontarelli, Salvatore, Bianchi, Giuseppe, Teofili, Simone: Traffic-aware design of a high-speed fpga network intrusion detection system. IEEE Trans. Comput. 62(11), 2322–2334 (2013)MathSciNetCrossRef Pontarelli, Salvatore, Bianchi, Giuseppe, Teofili, Simone: Traffic-aware design of a high-speed fpga network intrusion detection system. IEEE Trans. Comput. 62(11), 2322–2334 (2013)MathSciNetCrossRef
7.
8.
Zurück zum Zitat Varghese, G.: Network Algorithmics. Chapman & Hall/CRC (2010) Varghese, G.: Network Algorithmics. Chapman & Hall/CRC (2010)
9.
Zurück zum Zitat Tuck, N., Sherwood, T., Calder, B., Varghese, G.: Deterministic memory-efficient string matching algorithms for intrusion detection. In: INFOCOM 2004 Twenty-third Annual Joint Conference of the IEEE Computer and Communications Societies, vol. 4, pp. 2628–2639, IEEE (2004) Tuck, N., Sherwood, T., Calder, B., Varghese, G.: Deterministic memory-efficient string matching algorithms for intrusion detection. In: INFOCOM 2004 Twenty-third Annual Joint Conference of the IEEE Computer and Communications Societies, vol. 4, pp. 2628–2639, IEEE (2004)
10.
Zurück zum Zitat Le, H., Prasanna, V.K.: A memory-efficient and modular approach for large-scale string pattern matching. IEEE Trans. Comput. 62(5):844–857 (2013) Le, H., Prasanna, V.K.: A memory-efficient and modular approach for large-scale string pattern matching. IEEE Trans. Comput. 62(5):844–857 (2013)
11.
Zurück zum Zitat Arudchutha, S., Nishanthy, T, Ragel, R.G.: String matching with multicore cpus: performing better with the aho-corasick algorithm. arXiv preprint arXiv:1403.1305 (2014) Arudchutha, S., Nishanthy, T, Ragel, R.G.: String matching with multicore cpus: performing better with the aho-corasick algorithm. arXiv preprint arXiv:​1403.​1305 (2014)
12.
Zurück zum Zitat Hasib, S., Motwani, M., Saxena, A.: Importance of aho-corasick string matching algorithm in real world applications (2013) Hasib, S., Motwani, M., Saxena, A.: Importance of aho-corasick string matching algorithm in real world applications (2013)
13.
Zurück zum Zitat Tumeo, A., Villa, O., Chavarra-Miranda, D.G.: Aho-corasick string matching on shared and distributed-memory parallel architectures. IEEE Trans. Parallel Distrib. Syst. 23(3):436–443 (2012) Tumeo, A., Villa, O., Chavarra-Miranda, D.G.: Aho-corasick string matching on shared and distributed-memory parallel architectures. IEEE Trans. Parallel Distrib. Syst. 23(3):436–443 (2012)
14.
Zurück zum Zitat Rafeeq Ur Rehman: Intrusion detection systems with Snort: advanced IDS techniques using Snort, Apache, PHP, and ACID. Prentice Hall Professional, MySQL (2003) Rafeeq Ur Rehman: Intrusion detection systems with Snort: advanced IDS techniques using Snort, Apache, PHP, and ACID. Prentice Hall Professional, MySQL (2003)
Metadaten
Titel
High Speed Network Intrusion Detection System Using FPGA
verfasst von
S. Anuraj
P. Premalatha
T. Gireeshkumar
Copyright-Jahr
2016
Verlag
Springer India
DOI
https://doi.org/10.1007/978-81-322-2517-1_19