Title :
A 10 Gb/s wire-speed firewall system using reconfigurable processors
Author :
Katayama, M. ; Kai, H. ; Yoshida, J. ; Yamada, H. ; Shiomoto, K. ; Yamanaka, N.
Author_Institution :
Network Service Syst. Labs., NTT, Tokyo, Japan
Abstract :
Although the Internet is playing an increasingly significant role in global communication, it remains vulnerable to malicious traffic such as worms and DoS/DDoS attacks. In the last few years, the emergence of high speed active worms, such as Code Red II, Nimda, SQL Slammer and MS Blaster, has become a serious issue. These worms cause serious damage to communication networks throughout the world by using up network bandwidth. In addition, since conventional firewall systems are located just in front of the server and do not prevent malicious traffic from entering the network, they cannot prevent such network congestion. We have developed a proto-type system of a network firewall using reconfigurable processors. In this paper, we overview the developed system and present its evaluation results.
Keywords :
Internet; authorisation; computer network management; computer network reliability; invasive software; microprocessor chips; quality of service; reconfigurable architectures; security of data; telecommunication security; 10 Gbit/s; Code Red II; DDoS attacks; DoS attacks; Internet; MS Blaster; Nimda; SQL Slammer; communication network damage; denial of service attack; distributed DoS attack tools; firewall system; firewall systems; global communication; high speed active worms; malicious traffic; network bandwidth; network congestion; network firewall; reconfigurable processors; wire-speed; worms; Bandwidth; Communication networks; Computer crime; Floods; Global communication; Internet; Laboratories; Network servers; Telecommunication traffic; Web server;
Conference_Titel :
Communications, 2005. ICC 2005. 2005 IEEE International Conference on
Print_ISBN :
0-7803-8938-7
DOI :
10.1109/ICC.2005.1494365
