White Papers
Fast and Scalable Pattern Matching for Network Intrusion Detection Systems
Category: Security
Tags: keywords, applications, data
Overview High-speed packet content inspection and filtering devices rely on a fast multi-pattern matching algorithm which is used to detect predefined keywords or signatures in the packets. Multi-pattern matching is known to require intensive memory accesses and is often a performance bottleneck. Hence specialized hardware-accelerated algorithms are required for line-speed packet processing. This paper presents hardware-implementable pattern matching algorithm for content filtering applications, which is scalable in terms of speed, the number of patterns and the pattern length. The algorithm is based on a memory efficient multi-hashing data structure called Bloom filter. The paper uses embedded on-chip memory blocks in FPGA/VLSI chips to construct Bloom filters which can suppress a large fraction of memory accesses and speed up string matching.
- Publisher
- Stanford University
- File Format
- Date Published
- Jun 19, 2008
- Format
- White Papers
- Topics
- Intrusion Detection Systems, Network Security, Security Tools
Similiar White Papers
A Neural Network Based System for Intrusion Detection and Classification of Attacks
With the rapid expansion of computer networks during the past decade, security has become a crucial issue for computer s
Publisher: Queen's University | Tags: network
Security: New strides in preventing intrusions.
Need help eliminating risk in your IT environment? This ForwardView webshow describes how security appliances, which inc
Publisher: IBM
ATLANTIDES: An Architecture for Alert Verification in Network Intrusion Detection Systems
This paper presents an architecture1 designed for alert verification (i.e., to reduce false positives) in network intrus
Publisher: University of Twente | Tags: false positives, network, server
Using Artificial Intelligence in Intrusion Detection Systems
Artificial Intelligence could make the use of Intrusion Detection Systems a lot easier than it is today. They could lear
Publisher: Helsinki University of Technology
Detecting and Preventing Attacks Using Network Intrusion Detection Systems
Intrusion detection is an important technology in business sector as well as an active area of research. It is an import
Publisher: Sathyabama University | Tags: information security, network
Stanford University White Papers
Modeling Signal Attenuation in IEEE 802.11 Wireless LANs - Vol. 1
Path loss models are used to approximate signal attenuation as a function of the distance between transmitters and recei
Publisher: Stanford University | Tags: 802.11b, data
Measuring End-to-End Bandwidth With Iperf Using Web100
End-to-end bandwidth estimation tools like Iperf though fairly accurate are intrusive. This paper describes how with an
Publisher: Stanford University | Tags: data, ip, network
On Direct Routing in the Valiant Load-Balancing Architecture
It is very hard to design a network with performance guarantees, partly because it is hard to estimate the future traffi
Publisher: Stanford University | Tags: network
Flow-Cookies: Using Bandwidth Amplification to Defend Against DDoS Flooding Attacks
Distributed Denial-of-Service flooding attacks against public web servers are increasingly common. Websites without the
Publisher: Stanford University | Tags: ddos, infrastructure, ip, network, server
Evaluation of Advanced TCP Stacks on Fast Long-Distance Production Networks
With the growing needs of data intensive science, such as High Energy Physics, and the need to share data between multip
Publisher: Stanford University | Tags: data, ip, network
Featured white papers
-
The Value of Location Intelligence in the Communications Industry
Public Services are under pressure, the challenge is to do more with less. How do you improve citizen satisfaction, increase cost efficiencies and improve service delivery? The power of location intelligence is helping many local authorities...
-
Best Practices for Translating Customer Satisfaction into Revenue
Today's support organisations are focused on two top-level metrics: financial results and customer satisfaction. For most, it's easy to track financial performance, but customer satisfaction is akin to speaking a foreign language...
-
HP print solutions and 3M
The objective for 3M was to optimize office printing infrastructure at 3M locations worldwide, reduce total cost and environmental footprint. Some of the business benefits acheived by switching to HP print solutions...
-
Check out these top business apps for your iPhone
-
Inside a Microsoft datacentre
-
Green IT without losing your edge
-
Peter Cochrane's latest video blog
-
What you need to know about Windows 7