Network intrusion detection based on shift-OR circuit

Huang Chun Roan, Wen Jyi Hwang, Wei Jhih Huang, Chia Tien Dan Lo

Research output: Contribution to journalArticle

Abstract

This paper introduces a novel FPGA-based signature match co-processor that can serve as the core of a hardware-based network intrusion detection system (NIDS). The key feature of the signature match co-processor is an architecture based on the shift-or algorithm, which employs simple shift registers, or-gates, and ROMs where patterns are stored. As compared with related work, experimental results show that the proposed work achieves higher throughput and less hardware resource in the FPGA implementations of NIDS systems.

Original languageEnglish
Pages (from-to)1229-1239
Number of pages11
JournalJournal of Information Science and Engineering
Volume24
Issue number4
Publication statusPublished - 2008 Jul 1

    Fingerprint

Keywords

  • FPGA implementation
  • Network intrusion detection system
  • Pattern matching
  • Shift-or algorithm
  • String searching

ASJC Scopus subject areas

  • Software
  • Human-Computer Interaction
  • Hardware and Architecture
  • Library and Information Sciences
  • Computational Theory and Mathematics

Cite this