Title :
A Deterministic Cost-effective String Matching Algorithm for Network Intrusion Detection System
Author :
Nen-Fu Huang ; Yen-Ming Chu ; Chen-Ying Hsieh ; Chi-Hung Tsai ; Yih-Jou Tzang
Author_Institution :
Nat. Tsing-Hua Univ., Hsinchu
Abstract :
Network intrusion detection systems (NIDS) are more and more important in today´s network security for identifying and preventing malicious attacks over the network. This paper proposes a novel and effective string matching algorithm (named ACMS) with advantages of both compact memory and high performance. By employing the characteristics of magic states observed from the deterministic finite state automata, the proposed ACMS significantly reduces the memory requirement without sacrificing high speed no matter it is implemented in software or hardware. The ACMS algorithm also provides high flexibility that it can be tuned to fit specific performance requirement and resource constraints. The experimental results show that the performance of ACMS is over 3.5 times in hardware implementation and 21 times in software implementation better than that of the state-of-the-art studies.
Keywords :
deterministic automata; finite state machines; security of data; string matching; telecommunication security; deterministic cost-effective string matching algorithm; deterministic finite state automata; magic state algorithm; malicious attack; network intrusion detection system; network security; Algorithm design and analysis; Communications Society; Computer science; Data structures; Hardware; Inspection; Intrusion detection; Pattern matching; Payloads; Software performance;
Conference_Titel :
Communications, 2007. ICC '07. IEEE International Conference on
Conference_Location :
Glasgow
Print_ISBN :
1-4244-0353-7
DOI :
10.1109/ICC.2007.218
