You are here: silicon.com > Resources > White Papers > Security > Intrusion - Tampering > Network Security

Network Security White Papers

High-Throughput Linked-Pattern Matching for Intrusion Detection Systems

Tags:
network security

Overview This paper presents hardware architecture for highly efficient intrusion detection systems. In addition, a software tool for automatically generating the hardware is presented. Intrusion detection for network security is a compute-intensive application demanding high system performance. By moving both the string matching and the linking of multi-part rules to hardware, the architecture leaves the host system free for higher-level analysis. The tool automates the creation of efficient Field Programmable Gate Array architectures (FPGA). The generated hardware allows an FPGA-based system to perform deep-packet inspection of streams at up to 10 Gb/s line rates at a high level of area efficiency. Going beyond previous basic string-matching implementations that offer only single-string matching, the architecture provides support for rules requiring complex, linked (correlated-content) constructions.

Further White Paper Details
Publisher	Association for Computing Machinery	File Format	PDF
Date Published	October 2005
Format	White Papers
Topics	Network Security, Security Tools, Intrusion Detection Systems

Did you find this white paper useful? 5 out of 10 users found this white paper useful

Balancing Security Against Productivity

Publisher:
Novell

Security: New strides in preventing intrusions.

Publisher:
IBM

Novell Zenworks Endpoint Security Management: Total Control from a Single Console

Publisher:
Novell

Secure Desktop On-Demand Webcast

Publisher:
Novell

DTW - DODIIS Trusted Workstation: Intelligence Paradigm for the 21st Century

Publisher:
Sun Microsystems

US security council fights back

The pattern-matching system, known as the Federal Intrusion Detection Network (Fidet) would alert authorities to attacks which could cripple Government operations or even the economy. President Clinton may join forces with the FBI to protect...

Channel:
Security Strategy

Cisco set to cash in on network attack fears

Cisco has hinted it will be launching a gigabit speed intrusion detection system as well enhanced VPN products. The company already has the largest market share for network security devices, such as VPNs, firewalls and intrusion detection systems.

Channel:
Security Strategy

Symantec launches multiple threat protection

It features a single update mechanism which automatically updates virus definitions, firewall rules and intrusion detection signatures. The product, called Symantec Client Security, features firewall, anti-virus and intrusion detection system (IDS...

Channel:
Security Strategy

Symantec streamlines network security

Standalone network-protection products, such as intrusion-detection systems and firewalls, flag any unusual network behaviour as a security 'event'. Anti-virus firm Symantec has unveiled a package of network-security management tools designed to...

Channel:
Security Strategy

Interview: Father of the firewall

The only reason we have an intrusion detection product market at all is because the firewall vendors were too busy selling firewalls to think to add intrusion detection abilities to them. Why they aren't doing content scanning, anti-virus...

Channel:
Comment & Analysis

Analysis: The network is the security

This means that the network will perform the same functions that firewalls, intrusion detection and prevention, antivirus and content-filtering systems do today. Given the growing scope of threats and the limitations of current security...

Live Webcast: Telecoms 2.0 - Where is telecoms heading?

In this webcast, our panel of experts will review where we are with next generation telecoms in the UK, working through the concept of 'Telecoms 2.0': - Realising the potential of Next Generation Networks - why it isn't just about the technology? - What attributes should firms be looking for in their telco partner? - Is the relationship between telco provider and customer changing? - What things need to happen to make next generation services a reality? - You say you want the supplier to change. Do you want to change too? - What is Telecoms 2.0?

Publisher:
ZDNet UK

Telecom 2.0: Mind over matter

ntl:Telewest Business believes that the role of the telco is evolving. Gone are the days when it was enough to simply focus on circuits and minutes, customers now need a far higher degree of interaction and look for suppliers who will talk business solutions with them.

Publisher:
ntl:Telewest Business

IBM Information Server Change Data Capture

In today's fast-paced world, access to real-time data has never been more important. To be successful, organizations need to be able to report and analyze corporate data quickly and easily, regardless of what applications created the data, what platform they're running on, or what database they're stored in.

Publisher:
IBM

An examination of server consolidation: the trends that can drive efficiencies and help businesses gain a competitive edge

This white paper provides a starting point for organizations contemplating server consolidation. It includes an overview of server consolidation concepts and techniques and provides guidance on methodologies. It also looks at the potential cost savings associated with server consolidation and offers information on how organizations can sustain the advantage they have gained by consolidating their servers.

Publisher:
IBM

Also on silicon.com

Site Navigation:

Network Security White Papers

High-Throughput Linked-Pattern Matching for Intrusion Detection Systems

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

Advertising Features

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific