Sciweavers

FCCM
2004
IEEE

FPGA Based Network Intrusion Detection using Content Addressable Memories

14 years 4 months ago
FPGA Based Network Intrusion Detection using Content Addressable Memories
In this paper, we introduce a novel architecture for a hardware based network intrusion detection system (NIDS). Current software-based NIDS are too compute intensive and can not meet the bandwidth requirements of a modern network. Thus, hardware techniques are desired to speed up network processing. This paper introduces a FPGA based keyword match processor that can serve as the core of a hardware based NIDS. The keyword match processor's key feature is a cellular processor architecture that allows content addressable memory (CAM) to process variable sized keys. These CAMs allow us to perform intrusion detection signature lookups at line speed at rates well past 2 Gbps.
Long Bu, John A. Chandy
Added 20 Aug 2010
Updated 20 Aug 2010
Type Conference
Year 2004
Where FCCM
Authors Long Bu, John A. Chandy
Comments (0)