Variable length pattern matching for hardware network intrusion detection system

Chun Jason Xue, Meilin Liu, Qingfeng Zhuge, Edwin Hsing-Mean Sha

Research output: Journal Publications and ReviewsRGC 21 - Publication in refereed journalpeer-review

2 Citations (Scopus)

Abstract

With the wide adoption of internet into our everyday lives, internet security becomes an important issue. Intrusion detection at the network level is an effective way of stopping malicious attacks at the source and preventing viruses and worms from wide spreading. The key component in a successful network intrusion detection system is a high performance pattern matching engine that can uncover the malicious activities in real time. In this paper, we propose a highly parallel, scalable hardware based network intrusion detection system, that can handle variable pattern length efficiently and effectively. Pattern matching for a packet is completed in O(N log M) time where N is the size of the packet and M is the longest pattern length. Implementation is done on a standard off-the-shelf field-programmable gate array. Comparison with the other techniques shows promising results. © 2008 Springer Science+Business Media, LLC.
Original languageEnglish
Pages (from-to)85-93
JournalJournal of Signal Processing Systems
Volume59
Issue number1
DOIs
Publication statusPublished - Apr 2010

Research Keywords

  • Intrusion detection
  • Parallel system

Fingerprint

Dive into the research topics of 'Variable length pattern matching for hardware network intrusion detection system'. Together they form a unique fingerprint.

Cite this