Title :
Reconfigurable architectures for real-time network anomaly detection
Author_Institution :
Dept. of Electr. & Comput. Eng., Northwestern Univ., Evanston, IL, USA
Abstract :
A successful real-time intrusion detection is predicated on the ability to support the bandwidth demand of gigabit Ethernet. One portion of anomaly detection includes gathering additional network traffic information by extracting data based on network behavior. Those data are input to more advanced detection methods such as principal component analysis for anomaly detection. To achieve real-time performance, both the core algorithms and data gathering tools must satisfy bandwidth demands. In this Ph.D. work, we look to exploit reconfigurable hardware in a dynamic network environment and implement novel architectures for next generation intrusion detection systems utilizing anomaly detection schemes.
Keywords :
local area networks; principal component analysis; real-time systems; reconfigurable architectures; security of data; telecommunication security; telecommunication traffic; bandwidth demands; gigabit Ethernet; intrusion detection systems; network traffic information; principal component analysis; real time network anomaly detection; reconfigurable architectures; Association rules; Communication networks; Computer architecture; Data mining; Electrical capacitance tomography; Feature extraction; Field programmable gate arrays; Frequency; Intrusion detection; Payloads;
Conference_Titel :
Field Programmable Logic and Applications, 2005. International Conference on
Print_ISBN :
0-7803-9362-7
DOI :
10.1109/FPL.2005.1515834
