Intrusion detection system for high-speed network
作者: Wu Yang , Bin-Xing Fang , Bo Liu , Hong-Li Zhang
DOI: 10.1016/J.COMCOM.2004.03.001
关键词: Embedded system 、 Host-based intrusion detection system 、 Real-time computing 、 Anomaly-based intrusion detection system 、 Packet analyzer 、 Intrusion detection system 、 Computer science
摘要: The increasing network throughput challenges the current Network Intrusion Detection Systems (NIDS) to have compatible high-performance data processing. In this paper, we describe an in-depth research on related techniques of intrusion detection and implementation a Rule-based High-performance System (RHPNIDS) for high-speed networks. By integrating several performance optimizing methods, RHPNIDS is very impressive compared with popular open source NIDS Snort.
elsevier.com
sci-hub.se 参考文章(7)
R. C. Sekar, R. Ramesh, I. V. Ramakrishnan, Adaptive Pattern Matching SIAM Journal on Computing. ,vol. 24, pp. 1207- 1234 ,(1995) , 10.1137/S0097539793246252
Robert Graham, Special Features: NIDS - Pattern Search vs. Protocol Decode Computers & Security. ,vol. 20, pp. 37- 41 ,(2001) , 10.1016/S0167-4048(01)01019-7
C.J. Coit, S. Staniford, J. McAlerney, Towards faster string matching for intrusion detection or exceeding the speed of Snort darpa information survivability conference and exposition. ,vol. 1, pp. 367- 373 ,(2001) , 10.1109/DISCEX.2001.932231
Alfred V. Aho, Margaret J. Corasick, Efficient string matching: an aid to bibliographic search Communications of The ACM. ,vol. 18, pp. 333- 340 ,(1975) , 10.1145/360825.360855
Robert S. Boyer, J. Strother Moore, A fast string searching algorithm Communications of the ACM. ,vol. 20, pp. 762- 772 ,(1977) , 10.1145/359842.359859
C. Kruegel, F. Valeur, G. Vigna, R. Kemmerer, Stateful intrusion detection for high-speed network's ieee symposium on security and privacy. pp. 285- 293 ,(2002) , 10.1109/SECPRI.2002.1004378
Hou Yi-bin, A Fast String Matching Algorithm Mini-micro Systems. ,(2004)