A Studying on Implementation of NIDS Pattern Matching Based on FPGA

Abstract:

Article Preview

Intrusion detection for network security is an application area demanding high throughput. The pattern matching in intrusion detection requires extremely high performance to process string matching. Most of pattern matching using software has many time complexities and cannot reach the requirements of high throughput. The pattern matching using hardware considerably improves the speed of matching and has several other advantages. This paper describes a FPGA-based pattern matching architecture, using hashing method called XOR Hashing. The proposed method updates new patterns without reconfiguration and processes the collision and has high matching performance. The proposed system implements the pattern matching by using Snort rule-set, an open source Network Intrusion Detection and has simulation processing on PC. Compared with existing hardware method, the results explained that our method has relatively high performance for the pattern matching and can else process the pattern matching with high performance on low–cost FPGA device.

Info:

Periodical:

Advanced Materials Research (Volumes 403-408)

Edited by:

Li Yuan

Pages:

1985-1988

DOI:

10.4028/www.scientific.net/AMR.403-408.1985

Citation:

J. J. Li et al., "A Studying on Implementation of NIDS Pattern Matching Based on FPGA", Advanced Materials Research, Vols. 403-408, pp. 1985-1988, 2012

Online since:

November 2011

Export:

Price:

$35.00

In order to see related information, you need to Login.

In order to see related information, you need to Login.