Parallel network intrusion detection on reconfigurable platforms

Chun Jason Xue; ZiIi Shao; MeiLin Liu; QingFeng Zhuge; Edwin H.-M. Sha

doi:10.1007/978-3-540-77092-3_8

Parallel network intrusion detection on reconfigurable platforms

Chun Jason Xue
, ZiIi Shao
, MeiLin Liu
, QingFeng Zhuge
, Edwin H.-M. Sha

City University of Hong Kong

Research output: Chapters, Conference Papers, Creative and Literary Works › RGC 32 - Refereed conference paper (with host publication) › peer-review

Abstract

With the wide adoption of internet into our everyday lives, internet security becomes an important issue. Intrusion detection at the network level is an effective way of stopping malicious attacks at the source and preventing viruses and worms from wide spreading. The key component in a successful network intrusion detection system is a high performance pattern matching engine that can uncover the malicious activities in real time. In this paper, we propose a highly parallel, scalable hardware based network intrusion detection system, that can handle variable pattern length efficiently and effectively. Pattern matchings are completed in O (log M) time where M is the longest pattern length. Implementation is done on a standard off-the-shelf FPGA. Comparison with the other techniques shows promising results. © IFIP International Federation for Information Processing 2007.

Original language	English
Title of host publication	Embedded and Ubiquitous Computing
Subtitle of host publication	International Conference, EUC 2007, Proceedings
Publisher	Springer Verlag
Pages	75-86
Volume	4808 LNCS
ISBN (Print)	9783540770916
DOIs	https://doi.org/10.1007/978-3-540-77092-3_8
Publication status	Published - 2007
Event	2007 IFIP International Conference on Embedded and Ubiquitous Computing (EUC 2007) - Taipei, Taiwan, China Duration: 17 Dec 2007 → 20 Dec 2007

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	4808 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	2007 IFIP International Conference on Embedded and Ubiquitous Computing (EUC 2007)
Place	Taiwan, China
City	Taipei
Period	17/12/07 → 20/12/07

Access Output

10.1007/978-3-540-77092-3_8

Other Access Options

Check CityUHK Library

Permanent Link

Right click to copy link

Cite this

Xue, C. J., Shao, Z., Liu, M., Zhuge, Q., & Sha, E. H.-M. (2007). Parallel network intrusion detection on reconfigurable platforms. In Embedded and Ubiquitous Computing: International Conference, EUC 2007, Proceedings (Vol. 4808 LNCS, pp. 75-86). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 4808 LNCS). Springer Verlag. https://doi.org/10.1007/978-3-540-77092-3_8

Xue, Chun Jason ; Shao, ZiIi ; Liu, MeiLin et al. / Parallel network intrusion detection on reconfigurable platforms. Embedded and Ubiquitous Computing: International Conference, EUC 2007, Proceedings. Vol. 4808 LNCS Springer Verlag, 2007. pp. 75-86 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{3d39c9fbe6fb4796a26bdf3eadf03978,

title = "Parallel network intrusion detection on reconfigurable platforms",

abstract = "With the wide adoption of internet into our everyday lives, internet security becomes an important issue. Intrusion detection at the network level is an effective way of stopping malicious attacks at the source and preventing viruses and worms from wide spreading. The key component in a successful network intrusion detection system is a high performance pattern matching engine that can uncover the malicious activities in real time. In this paper, we propose a highly parallel, scalable hardware based network intrusion detection system, that can handle variable pattern length efficiently and effectively. Pattern matchings are completed in O (log M) time where M is the longest pattern length. Implementation is done on a standard off-the-shelf FPGA. Comparison with the other techniques shows promising results. {\textcopyright} IFIP International Federation for Information Processing 2007.",

author = "Xue, \{Chun Jason\} and ZiIi Shao and MeiLin Liu and QingFeng Zhuge and Sha, \{Edwin H.-M.\}",

year = "2007",

doi = "10.1007/978-3-540-77092-3\_8",

language = "English",

isbn = "9783540770916",

volume = "4808 LNCS",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Verlag",

pages = "75--86",

booktitle = "Embedded and Ubiquitous Computing",

address = "Germany",

note = "2007 IFIP International Conference on Embedded and Ubiquitous Computing (EUC 2007) ; Conference date: 17-12-2007 Through 20-12-2007",

}

Xue, CJ, Shao, Z, Liu, M, Zhuge, Q & Sha, EH-M 2007, Parallel network intrusion detection on reconfigurable platforms. in Embedded and Ubiquitous Computing: International Conference, EUC 2007, Proceedings. vol. 4808 LNCS, Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 4808 LNCS, Springer Verlag, pp. 75-86, 2007 IFIP International Conference on Embedded and Ubiquitous Computing (EUC 2007), Taipei, Taiwan, China, 17/12/07. https://doi.org/10.1007/978-3-540-77092-3_8

Parallel network intrusion detection on reconfigurable platforms. / Xue, Chun Jason; Shao, ZiIi; Liu, MeiLin et al.
Embedded and Ubiquitous Computing: International Conference, EUC 2007, Proceedings. Vol. 4808 LNCS Springer Verlag, 2007. p. 75-86 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 4808 LNCS).

Research output: Chapters, Conference Papers, Creative and Literary Works › RGC 32 - Refereed conference paper (with host publication) › peer-review

TY - GEN

T1 - Parallel network intrusion detection on reconfigurable platforms

AU - Xue, Chun Jason

AU - Shao, ZiIi

AU - Liu, MeiLin

AU - Zhuge, QingFeng

AU - Sha, Edwin H.-M.

PY - 2007

Y1 - 2007

N2 - With the wide adoption of internet into our everyday lives, internet security becomes an important issue. Intrusion detection at the network level is an effective way of stopping malicious attacks at the source and preventing viruses and worms from wide spreading. The key component in a successful network intrusion detection system is a high performance pattern matching engine that can uncover the malicious activities in real time. In this paper, we propose a highly parallel, scalable hardware based network intrusion detection system, that can handle variable pattern length efficiently and effectively. Pattern matchings are completed in O (log M) time where M is the longest pattern length. Implementation is done on a standard off-the-shelf FPGA. Comparison with the other techniques shows promising results. © IFIP International Federation for Information Processing 2007.

AB - With the wide adoption of internet into our everyday lives, internet security becomes an important issue. Intrusion detection at the network level is an effective way of stopping malicious attacks at the source and preventing viruses and worms from wide spreading. The key component in a successful network intrusion detection system is a high performance pattern matching engine that can uncover the malicious activities in real time. In this paper, we propose a highly parallel, scalable hardware based network intrusion detection system, that can handle variable pattern length efficiently and effectively. Pattern matchings are completed in O (log M) time where M is the longest pattern length. Implementation is done on a standard off-the-shelf FPGA. Comparison with the other techniques shows promising results. © IFIP International Federation for Information Processing 2007.

UR - https://www.scopus.com/pages/publications/38149123360

UR - https://www.scopus.com/record/pubmetrics.uri?eid=2-s2.0-38149123360&origin=recordpage

U2 - 10.1007/978-3-540-77092-3_8

DO - 10.1007/978-3-540-77092-3_8

M3 - RGC 32 - Refereed conference paper (with host publication)

SN - 9783540770916

VL - 4808 LNCS

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 75

EP - 86

BT - Embedded and Ubiquitous Computing

PB - Springer Verlag

T2 - 2007 IFIP International Conference on Embedded and Ubiquitous Computing (EUC 2007)

Y2 - 17 December 2007 through 20 December 2007

ER -

Xue CJ, Shao Z, Liu M, Zhuge Q, Sha EHM. Parallel network intrusion detection on reconfigurable platforms. In Embedded and Ubiquitous Computing: International Conference, EUC 2007, Proceedings. Vol. 4808 LNCS. Springer Verlag. 2007. p. 75-86. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-540-77092-3_8

Parallel network intrusion detection on reconfigurable platforms

Abstract

Publication series

Conference

Access Output

Other Access Options

Permanent Link

Other Files and Links

Fingerprint

Cite this