ETRI-Knowledge Sharing Plaform

KOREAN
논문 검색
Type SCI
Year ~ Keyword

Detail

Conference Paper FPGA Based Intrusion Detection System Against Unknown and Known Attacks
Cited 3 time in scopus Share share facebook twitter linkedin kakaostory
Authors
Dong Ho Kang, Byoung Koo Kim, Jin Tae Oh, Taek Yong Nam, Jong Soo Jang
Issue Date
2006-08
Citation
Pacific Rim International Workshop on Multi-Agents (PRIMA) 2006 (LNCS 4088), v.4088, pp.801-806
Language
English
Type
Conference Paper
DOI
https://dx.doi.org/10.1007/11802372_97
Abstract
Network intrusion detection systems often rely on matching patterns that are gleaned from known attacks. While this method is reliable and rarely produces false alarms, it has the obvious disadvantage that it cannot detect novel attacks. Accordingly, an alternative approach which can be a combination with pattern matching approach is needed. We have made effort to design and implement high speed protocol anomaly and signature based intrusion detection approach to detect known and unknown attacks. This approach extracts a set of service fields from the application payload where many attacks occur and analyzes the value of fields to verify attack. This approach is implemented on the FPGA (Xilinx Virtex II pro) device to process packet at gigabit-per-second data rates. © Springer-Verlag Berlin Heidelberg 2006.
KSP Keywords
False Alarm, Gigabit-Per-Second(Gbps), High Speed, Intrusion Detection Systems(IDSs), Intrusion detection system(IDS), Matching approach, Novel attacks, Xilinx virtex, data rate, network intrusion detection system, pattern matching