A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2017; you can also visit the original URL.
The file type is application/pdf
.
Haetae: Scaling the Performance of Network Intrusion Detection with Many-Core Processors
[chapter]
2015
Lecture Notes in Computer Science
In this paper, we present the design and implementation of Haetae, a high-performance Suricata-based NIDS on many-core processors (MCPs). Haetae achieves high performance with three design choices. First, Haetae extensively exploits high parallelism by launching NIDS engines that independently analyze the incoming flows at high speed as much as possible. Second, Haetae fully leverages programmable network interface cards to offload common packet processing tasks from regular cores. Also, Haetae
doi:10.1007/978-3-319-26362-5_5
fatcat:efehbvvshjaxlchmi5z72usseu