Exploiting Stateful Inspection of Network Security in Reconfigurable Hardware

Li, Shaomeng; Tørresen, Jim; Søråsen, Oddvar

doi:10.1007/978-3-540-45234-8_142

Shaomeng Li³,
Jim Tørresen³ &
Oddvar Søråsen³

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 2778))

Included in the following conference series:

International Conference on Field Programmable Logic and Applications

2079 Accesses
7 Citations

Abstract

One of the most important areas of a network intrusion detection system (NIDS), stateful inspection, is described in this paper. We present a novel reconfigurable hardware architecture implementing TCP stateful inspection used in NIDS. This is to achieve a more efficient and faster network intrusion detection system as todays’ NIDSs show inefficiency and even fail to perform while encountering the faster Internet. The performance of the NIDS described is expected to obtain a throughput of 3.0 Gbps.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 39.99; Price excludes VAT (USA)

Softcover Book: USD 54.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

References

Clarkin, M.: Comparison of CyberwallPLUS Intrusion Prevention and Current IDS technology. NETWORK-1, Security Solutions, Inc., White Paper
Google Scholar
Postel, J.: Request For comment 793, Transmission control Protocol (1998)
Google Scholar
Sergei et al.: SNORTRAN: An Optimizing Compiler for Snort Rules. Fidelis Security Systems, Inc. (2002)
Google Scholar
Li, S., et al.: Exploiting Reconfigurable Hardware for Network Security. In: Proc. of 11th Annual IEEE Symposium on Fiels-Programmable Custom Computing Machines (FCCM 2003) (2003)
Google Scholar
Necker, M., et al.: TCP-Stream Reassembly and State Tracking in Hardware. In: Proc. of 10th Annual IEEE Symposium on Fiels-Programmable Custom Computing Machines (FCCM 2002), School od Electrical and computer Engineering, Georgia Institute of Technology, Atlanta, GA (2002)
Google Scholar
http://www.xilinx.com

Download references

Author information

Authors and Affiliations

Department of Informatics, University of Oslo, N-0316, Oslo, Norway
Shaomeng Li, Jim Tørresen & Oddvar Søråsen

Authors

Shaomeng Li
View author publications
You can also search for this author in PubMed Google Scholar
Jim Tørresen
View author publications
You can also search for this author in PubMed Google Scholar
Oddvar Søråsen
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

Department of Electrical and Electronic Engineering, Imperial College London, Exhibition Road, SW7 2BT, London, UK
Peter Y. K. Cheung
Department of Electrical & Electronic Engineering, Imperial College London, Exhibition Road, SW7 2BT, London, UK
George A. Constantinides

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Li, S., Tørresen, J., Søråsen, O. (2003). Exploiting Stateful Inspection of Network Security in Reconfigurable Hardware. In: Y. K. Cheung, P., Constantinides, G.A. (eds) Field Programmable Logic and Application. FPL 2003. Lecture Notes in Computer Science, vol 2778. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-45234-8_142

Download citation

DOI: https://doi.org/10.1007/978-3-540-45234-8_142
Published: 30 September 2003
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-40822-2
Online ISBN: 978-3-540-45234-8
eBook Packages: Springer Book Archive

Publish with us

Policies and ethics