Design and Implementation of String Matching in Intrusion Detection/Protection System
碩士 === 國立交通大學 === 電信工程系所 === 97 === Network security system has to promote processing power because of the increasing network traffic. Usually, the intrusion detection system can be classified into two major types: abnormal-behavior detection and signature matching. There is a bottleneck since imple...
| Main Authors: | , |
|---|---|
| Other Authors: | |
| Format: | Others |
| Language: | zh-TW |
| Published: |
2008
|
| Online Access: | http://ndltd.ncl.edu.tw/handle/10176797172249060721 |
| Summary: | 碩士 === 國立交通大學 === 電信工程系所 === 97 === Network security system has to promote processing power because of the increasing network traffic. Usually, the intrusion detection system can be classified into two major types: abnormal-behavior detection and signature matching. There is a bottleneck since implementation of string matching using only software may not keep up with the growth of bandwidth. Recent researches prefers to hand over the string match process to hardware solution to get speed breakthrough. Thus we need to design a string match hardware system.
This paper will implement a string match system researched by NCTU NTL Laboratory, and implement the verification module on FPGA. Finally I propose a new data storage format based on Banded-Row format.
|
|---|