Distributed Intrusion Detection with Intelligent Network Interfaces for Future Networks

Author

Luo, Yan ; Xiang, Ke ; Fan, Jie ; Zhang, Chunhui

Author_Institution

Dept. of Electr. & Comput. Eng., Univ. of Massachusetts, Lowell, MA, USA

fYear

2009

fDate

14-18 June 2009

Firstpage

1

Lastpage

5

Abstract

Intrusion detection remains an important and challenging task in current and next generation networks (NGN). Emerging technologies such as multi-core processors and virtualization have changed the architecture of the building elements of NGN significantly, thus call for rethinking of how network processing is done. In this paper, we propose distributed intrusion detection using intelligent network interfaces where additional processing capabilities are available. We design and implement a prototype to perform pattern matching using network processors since pattern matching is one of the important workloads in intrusion detection. Through the experimental results, we show the feasibility and performance of distributed intrusion detection in next generation networks.

Keywords

network interfaces; pattern matching; security of data; distributed intrusion detection; intelligent network interfaces; multicore processors; network processing; network processors; next generation networks; pattern matching; virtualization; Computer architecture; IP networks; Intelligent networks; Intrusion detection; Multicore processing; Network interfaces; Network servers; Next generation networking; Pattern matching; Prototypes;

fLanguage

English

Publisher

ieee

Conference_Titel

Communications, 2009. ICC '09. IEEE International Conference on

Conference_Location

Dresden

ISSN

1938-1883

Print_ISBN

978-1-4244-3435-0

Electronic_ISBN

1938-1883

Type

conf

DOI

10.1109/ICC.2009.5198928

Filename

5198928