You are here: silicon.com > Resources > White Papers > Security > Intrusion - Tampering > Network Security

Network Security White Papers

A Network Intrusion Detection System on IXP1200 Network Processors With Support for Large Rule Sets

Tags:
network security

Overview This paper describes a network intrusion detection system implemented on the IXP1200 network processor. It is aimed at detecting worms at high speeds by matching the payload of network packets against worm signatures at the lowest possible levels of the processing hierarchy (the microengines of an IXP1200 network processor). The solution employs the Aho-Corasick algorithm in a parallel fashion, where each microengine processes a subset of the network traffic. To allow for large patterns as well as a large number of rules, the signatures are stored in off-chip memory. Using an old version of the IXP network processors (the IXP1200), the system is capable of handling close to 200 Mbps with full content scan for realistic threats.

Further White Paper Details
Publisher	Vrije Universiteit	File Format	PDF
Date Published	February 2004
Format	White Papers
Topics	Network Security, Security Tools, Intrusion Detection Systems

Did you find this white paper useful? 3 out of 6 users found this white paper useful

Balancing Security Against Productivity

Publisher:
Novell

Security: New strides in preventing intrusions.

Publisher:
IBM

Novell Zenworks Endpoint Security Management: Total Control from a Single Console

Publisher:
Novell

Secure Desktop On-Demand Webcast

Publisher:
Novell

DTW - DODIIS Trusted Workstation: Intelligence Paradigm for the 21st Century

Publisher:
Sun Microsystems

Torvalds' chip venture sets sail

Three-quarters of the chip's functions will be carried out by Code Morphing software with the processor doing the remaining quarter. This, the company claims, enables it to reach high-processing speeds at low levels of power consumption.

Channel:
PDAs

Devil's Advocate: 64-bit computing - a state-of-the-art red herring?

The original IBM PC was built round an Intel processor that was never designed for general purpose computing but meant as an embedded chip in peripheral devices. While there are important examples, much of the vast quantity of stored data is quite...

Analysis: The network is the security

This means that the network will perform the same functions that firewalls, intrusion detection and prevention, antivirus and content-filtering systems do today. Network devices will have the ability to tear apart packets, block malicious code...

Intel confirms Otellini as new head

Next year will be the real test of the strategy, as Intel will begin a move to dual-core processors, which will incorporate two processor cores into one chip. Intel, which claims more than 80 percent of the PC processor market and does a huge...

Channel:
IT Director
Tags:
ceo,
barrett,
otellini,
coo

Devil's Advocate: In search of wireless nirvana

An appealing application for power over ethernet is support for a centrally powered, distributed network that channels data packets on fewer and fewer cables as they get closer to central points that house servers.

The dos and don'ts of VoIP security

Additional tools that will help networks in case of any attack are intrusion detection and prevention systems, which scan for rogue incoming packets, and straightforward antivirus software which can help prevent any known threats from disrupting...

Live Webcast: Telecoms 2.0 - Where is telecoms heading?

In this webcast, our panel of experts will review where we are with next generation telecoms in the UK, working through the concept of 'Telecoms 2.0': - Realising the potential of Next Generation Networks - why it isn't just about the technology? - What attributes should firms be looking for in their telco partner? - Is the relationship between telco provider and customer changing? - What things need to happen to make next generation services a reality? - You say you want the supplier to change. Do you want to change too? - What is Telecoms 2.0?

Publisher:
ZDNet UK

Telecom 2.0: Mind over matter

ntl:Telewest Business believes that the role of the telco is evolving. Gone are the days when it was enough to simply focus on circuits and minutes, customers now need a far higher degree of interaction and look for suppliers who will talk business solutions with them.

Publisher:
ntl:Telewest Business

IBM Information Server Change Data Capture

In today's fast-paced world, access to real-time data has never been more important. To be successful, organizations need to be able to report and analyze corporate data quickly and easily, regardless of what applications created the data, what platform they're running on, or what database they're stored in.

Publisher:
IBM

An examination of server consolidation: the trends that can drive efficiencies and help businesses gain a competitive edge

This white paper provides a starting point for organizations contemplating server consolidation. It includes an overview of server consolidation concepts and techniques and provides guidance on methodologies. It also looks at the potential cost savings associated with server consolidation and offers information on how organizations can sustain the advantage they have gained by consolidating their servers.

Publisher:
IBM

Also on silicon.com

Site Navigation:

Network Security White Papers

A Network Intrusion Detection System on IXP1200 Network Processors With Support for Large Rule Sets

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

Advertising Features

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific