A Fast Pattern-Match Engine for Network Processor-based Network Intrusion Detection System

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Rong-Tai Liu Articles by Nen-Fu Huang Articles by Chia-Nan Kao Articles by Chih-Hao Chen Articles by Chi-Chieh Chou

International Conference on Information Technology: Coding and Computing (ITCC'04) Volume 1

Las Vegas, Nevada

April 05-April 07

ISBN: 0-7695-2108-8

	ASCII Text	x
	Rong-Tai Liu, Nen-Fu Huang, Chia-Nan Kao, Chih-Hao Chen, Chi-Chieh Chou, "A Fast Pattern-Match Engine for Network Processor-based Network Intrusion Detection System," Information Technology: Coding and Computing, International Conference on, vol. 1, pp. 97, International Conference on Information Technology: Coding and Computing (ITCC'04) Volume 1, 2004.

	BibTex	x
	@article{ 10.1109/ITCC.2004.1286432, author = {Rong-Tai Liu and Nen-Fu Huang and Chia-Nan Kao and Chih-Hao Chen and Chi-Chieh Chou}, title = {A Fast Pattern-Match Engine for Network Processor-based Network Intrusion Detection System}, journal ={Information Technology: Coding and Computing, International Conference on}, volume = {1}, year = {2004}, isbn = {0-7695-2108-8}, pages = {97}, doi = {http://doi.ieeecomputersociety.org/10.1109/ITCC.2004.1286432}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Information Technology: Coding and Computing, International Conference on TI - A Fast Pattern-Match Engine for Network Processor-based Network Intrusion Detection System SN - 0-7695-2108-8 SP EP A1 - Rong-Tai Liu, A1 - Nen-Fu Huang, A1 - Chia-Nan Kao, A1 - Chih-Hao Chen, A1 - Chi-Chieh Chou, PY - 2004 KW - null VL - 1 JA - Information Technology: Coding and Computing, International Conference on ER -

Rong-Tai Liu, National Tsing Hua University, Taiwan

Nen-Fu Huang, National Tsing Hua University, Taiwan

Chia-Nan Kao, National Tsing Hua University, Taiwan

Chih-Hao Chen, National Tsing Hua University, Taiwan

Chi-Chieh Chou, National Tsing Hua University, Taiwan

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ITCC.2004.1286432

Network Intrusion Detection Systems (NIDS) are one of the latest developments in security. The matching of packet strings against collected signatures dominates signature-based NIDS performance. This work presents FNP², an efficient pattern-matching engine designed for Network Processor platform which conducts matching sets of patterns in parallel. This work shows that combining our string matching methodology, hashing engine supported by most Network Processors, and characteristics of current Snort signatures frequently improves performance and reduces number of memory accesses compared to current NIDS pattern matching algorithms. Another contribution is to highlight that, besides total number of searching patterns, shortest pattern length is also a major influence on NIDS multi-pattern matching algorithm performance.

Citation:

Rong-Tai Liu, Nen-Fu Huang, Chia-Nan Kao, Chih-Hao Chen, Chi-Chieh Chou, "A Fast Pattern-Match Engine for Network Processor-based Network Intrusion Detection System," itcc, vol. 1, pp.97, International Conference on Information Technology: Coding and Computing (ITCC'04) Volume 1, 2004

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.