Achieving 100gbps intrusion prevention on a single server
Intrusion Detection and Prevention Systems (IDS/IPS) are among the most demanding
stateful network functions. Today's network operators are faced with securing 100Gbps …
stateful network functions. Today's network operators are faced with securing 100Gbps …
Kargus: a highly-scalable software-based intrusion detection system
As high-speed networks are becoming commonplace, it is increasingly challenging to
prevent the attack attempts at the edge of the Internet. While many high-performance …
prevent the attack attempts at the edge of the Internet. While many high-performance …
Traffic-aware design of a high-speed FPGA network intrusion detection system
S Pontarelli, G Bianchi, S Teofili - IEEE transactions on …, 2012 - ieeexplore.ieee.org
Security of today's networks heavily rely on network intrusion detection systems (NIDSs).
The ability to promptly update the supported rule sets and detect new emerging attacks …
The ability to promptly update the supported rule sets and detect new emerging attacks …
The shunt: an FPGA-based accelerator for network intrusion prevention
The sophistication and complexity of analysis performed by today's network intrusion
prevention systems (IPSs) benefits greatly from implementation using general-purpose …
prevention systems (IPSs) benefits greatly from implementation using general-purpose …
Fast network security utilizing intrusion prevention systems
N Mehta, RD Graham - US Patent 7,808,897, 2010 - Google Patents
US7808897B1 - Fast network security utilizing intrusion prevention systems - Google
Patents US7808897B1 - Fast network security utilizing intrusion prevention systems …
Patents US7808897B1 - Fast network security utilizing intrusion prevention systems …
A methodology for synthesis of efficient intrusion detection systems on FPGAs
ZK Baker, VK Prasanna - 12th Annual IEEE Symposium on …, 2004 - ieeexplore.ieee.org
Intrusion detection for network security is a computation intensive application demanding
high system performance. System level design, a relatively unexplored field in this area …
high system performance. System level design, a relatively unexplored field in this area …
MIDeA: a multi-parallel intrusion detection architecture
Network intrusion detection systems are faced with the challenge of identifying diverse
attacks, in extremely high speed networks. For this reason, they must operate at multi …
attacks, in extremely high speed networks. For this reason, they must operate at multi …
Synthesizing Fast Intrusion {Prevention/Detection} Systems from {High-Level} Specifications
R Sekar, PUR Sekar - … USENIX Security Symposium (USENIX Security 99 …, 1999 - usenix.org
To build survivable information systems (ie, systems that continue to provide their services in
spite of coordinated attacks), it is necessary to detect and isolate intrusions before they …
spite of coordinated attacks), it is necessary to detect and isolate intrusions before they …
Shunting: a hardware/software architecture for flexible, high-performance network intrusion prevention
Stateful, in-depth, inline traffic analysis for intrusion detection and prevention is growing
increasingly more difficult as the data rates of modern networks rise. Yet it remains the case …
increasingly more difficult as the data rates of modern networks rise. Yet it remains the case …
[PDF][PDF] netmap: a novel framework for fast packet I/O
L Rizzo - 21st USENIX Security Symposium (USENIX Security …, 2012 - usenix.org
Many applications (routers, traffic monitors, firewalls, etc.) need to send and receive packets
at line rate even on very fast links. In this paper we present netmap, a novel framework that …
at line rate even on very fast links. In this paper we present netmap, a novel framework that …