Home††††††† Author Index††††††† Search†††††††††††††††† Volume 1††††† May 2009††††† ISSN 1797-9617

International Journal of

Recent Trends in Engineering

Home > Vol. 1, No. 1

 

International Journal of Recent Trends in Engineering (IJRTE)

ISSN 1797-9617

Volume 1,† Number 1,† May 2009

Issue on Computer Science

Page(s): 264-268

High-Speed Signature Matching in Network Interface Device using Bloom Filters

†††††††††† Arun Kumar S P

Full text:† PDF

Abstract

Network intrusion detection systems play a critical role in protecting the information infrastructure of an organization. Due to the sophistication and complexity of techniques used for the analysis they are commonly based on general-purpose workstations. Although cost-efficient, these general-purpose systems are found to be inadequate as they fail to perform efficiently at high packet rates. The resulting packet loss degrades the systemís overall effectiveness, as the analyzing capability of the system is reduced. It has been found that the performance of these systems can be improved significantly by filtering out unwanted packets. This paper presents the design of a Programmable Ethernet Interface Card that is used to offload signature matching from software and thereby improve the detection ratio and performance of the system.

Index Terms

NIC, Signature Matching, Bloom Filters, Network Security

Published by Academy Publisher in cooperation with the ACEEE

@ Copyright 2009 ACADEMY PUBLISHER ó All rights reserved