| Architecture Support for Intrusion Detection systems Contributor(s): Sreekar Shenoy Govind (Author) |
|
 |
ISBN: 3659612774 ISBN-13: 9783659612770 Publisher: LAP Lambert Academic Publishing OUR PRICE: $53.25 Product Type: Paperback Published: October 2014 |
| Additional Information |
| BISAC Categories: - Computers | Hardware - General |
| Physical Information: 0.37" H x 6" W x 9" (0.54 lbs) 160 pages |
| Descriptions, Reviews, Etc. |
| Publisher Description: System security is a prerequisite for efficient day-to-day transactions. As a consequence, Intrusion Detection Systems (IDS) are commonly used to provide an effective security ring to systems in a network. An IDS operates by inspecting packets flowing in the network for malicious content. To do so, an IDS like Snort 49] compares bytes in a packet with a database of prior reported attacks. This functionality can also be viewed as string matching of the packet bytes with the attack string database. In this thesis we explore hardware and software techniques to accelerate string matching in an IDS. We propose mechanisms/hueristics that can be deployed either in a custom ASIC or a network processor and/or a commodity CPU. Our performance results indicate clear benefits in using our proposed scheme over the state-of-the-art. |