Internet Archive Scholar

NIS04-6: A Time- and Memory- Efficient String Matching Algorithm for Intrusion Detection Systems

Tzu-Fang Sheu, Nen-Fu Huang, Hsiao-Ping Lee
2006 IEEE Global Communications Conference, Exhibition, & Industry Forum (GLOBECOM)  

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (532.7 kB)
https://web.archive.org/web/20200319163505/http://cial.csie.ncku.edu.tw/presentation/group_pdf/A%20Time%20and%20Memory%20Efficient%20String%20Matching%20Algorithm%20for%20Intrusion%20Detection%20Systems.PDF

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2020; you can also visit the original URL. The file type is application/pdf.

Intrusion Detection Systems (IDSs) are known as useful tools for identifying malicious attempts over the network. The most essential part to an IDS is the searching engine that inspects every packet through the network. To strictly defend the protectorate, an IDS must be able to inspect packets at line rate and also provide guaranteed performance even under heavy attacks. Therefore, in this paper we propose an efficient string matching algorithm (named ACM) with compact memory as well as high
more » ... rst-case performance. Using a magic number heuristic based on the Chinese Remainder Theorem, the proposed ACM significantly reduces the memory requirement without bringing complex processes. Furthermore, the latency of off-chip memory references is drastically reduced. The proposed ACM can be easily implemented in hardware and software. As a result, ACM enables cost-effective and efficient IDSs.
doi:10.1109/glocom.2006.284 dblp:conf/globecom/SheuHL06 fatcat:kiesnr6lsbc4nl7hkweaa4b7ze
Citation

Tzu-Fang Sheu, Nen-Fu Huang, Hsiao-Ping Lee. "NIS04-6: A Time- and Memory- Efficient String Matching Algorithm for Intrusion Detection Systems." IEEE Global Communications Conference, Exhibition, & Industry Forum (GLOBECOM) (2006)