You are here: silicon.com > Resources > White Papers > Security > Intrusion - Tampering > Network Security

Network Security White Papers

SNORTRAN: An Optimizing Compiler for Snort Rules

Tags:
network security

Overview This paper developed an optimizing compiler for intrusion detection rules popularized by an open-source Snort Network Intrusion Detection System (www.snort.org). While Snort and Snort-like rules are usually thought of as a list of independent patterns to be tested in a sequential order, the paper demonstrates that common compilation techniques are directly applicable to Snort rule sets and are able to produce high-performance matching engines. SNORTRAN combines several compilation techniques, including cost-optimized decision trees, pattern matching precompilation, and string set clustering. Although all these techniques have been used before in other domain-specific languages, one believes their synthesis in SNORTRAN is original and unique.

Further White Paper Details
Publisher	Fidelis Security Systems	File Format	PDF
Date Published	September 2002
Format	White Papers
Topics	Network Security, Security Tools, Intrusion Detection Systems

Did you find this white paper useful? 4 out of 7 users found this white paper useful

Balancing Security Against Productivity

Publisher:
Novell

Security: New strides in preventing intrusions.

Publisher:
IBM

Novell Zenworks Endpoint Security Management: Total Control from a Single Console

Publisher:
Novell

Secure Desktop On-Demand Webcast

Publisher:
Novell

DTW - DODIIS Trusted Workstation: Intelligence Paradigm for the 21st Century

Publisher:
Sun Microsystems

US security council fights back

The pattern-matching system, known as the Federal Intrusion Detection Network (Fidet) would alert authorities to attacks which could cripple Government operations or even the economy. President Clinton may join forces with the FBI to protect...

Channel:
Security Strategy

Tripwire in Linux security alliance

Three leading suppliers will integrate Tripwire intrusion detection and prevention software with their products to make Linux more secure for ebusiness. Caldera, Red Hat and SGI's decision could help the open source OS become more acceptable as a...

Channel:
Desktops

Symantec celebrates success with $355m spree

Symantec will pay $135m in cash for Recourse, and integrate its ManHunt intrusion detection system with its own Intruder Alert and ManTrap products. The final leg of the spending spree will see Symantec seal a deal for SecurityFocus which runs a...

Channel:
LANs

Companies urged to patch Sendmail

Because the vulnerability is contained in an email message, it will bypass firewalls and many intrusion detection systems, said Dan Ingsvaldson, team leader for ISS's vulnerability research group. The only dependency is that the domain needs to...

SCO shakes the foundations of open source

Numerous open-source projects besides the core, or kernel, of Linux employ the GPL, including the OpenOffice desktop software suite, the MySQL database, the Gaim instant messenger software and the Snort intrusion detection program.

Channel:
Operating Systems

Locking down financial security

Even fewer used an intrusion prevention system. Ideally, they will analyse existing transaction patterns to spot anomalous transactions. Systems that analyse users' behaviour are one method of refining fraud detection, he says.

Live Webcast: Telecoms 2.0 - Where is telecoms heading?

In this webcast, our panel of experts will review where we are with next generation telecoms in the UK, working through the concept of 'Telecoms 2.0': - Realising the potential of Next Generation Networks - why it isn't just about the technology? - What attributes should firms be looking for in their telco partner? - Is the relationship between telco provider and customer changing? - What things need to happen to make next generation services a reality? - You say you want the supplier to change. Do you want to change too? - What is Telecoms 2.0?

Publisher:
ZDNet UK

Telecom 2.0: Mind over matter

ntl:Telewest Business believes that the role of the telco is evolving. Gone are the days when it was enough to simply focus on circuits and minutes, customers now need a far higher degree of interaction and look for suppliers who will talk business solutions with them.

Publisher:
ntl:Telewest Business

IBM Information Server Change Data Capture

In today's fast-paced world, access to real-time data has never been more important. To be successful, organizations need to be able to report and analyze corporate data quickly and easily, regardless of what applications created the data, what platform they're running on, or what database they're stored in.

Publisher:
IBM

An examination of server consolidation: the trends that can drive efficiencies and help businesses gain a competitive edge

This white paper provides a starting point for organizations contemplating server consolidation. It includes an overview of server consolidation concepts and techniques and provides guidance on methodologies. It also looks at the potential cost savings associated with server consolidation and offers information on how organizations can sustain the advantage they have gained by consolidating their servers.

Publisher:
IBM

Also on silicon.com

Site Navigation:

Network Security White Papers

SNORTRAN: An Optimizing Compiler for Snort Rules

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

Advertising Features

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific