ETRI-Knowledge Sharing Plaform

ENGLISH

성과물

논문 검색
구분 SCI
연도 ~ 키워드

상세정보

학술대회 FPGA Based Intrusion Detection System Against Unknown and Known Attacks
Cited 3 time in scopus Download 1 time Share share facebook twitter linkedin kakaostory
저자
강동호, 김병구, 오진태, 남택용, 장종수
발행일
200608
출처
Pacific Rim International Workshop on Multi-Agents (PRIMA) 2006 (LNCS 4088), v.4088, pp.801-806
DOI
https://dx.doi.org/10.1007/11802372_97
협약과제
06MK1100, 고성능 네트워크 정보보호 시스템 개발, 손승원
초록
Network intrusion detection systems often rely on matching patterns that are gleaned from known attacks. While this method is reliable and rarely produces false alarms, it has the obvious disadvantage that it cannot detect novel attacks. Accordingly, an alternative approach which can be a combination with pattern matching approach is needed. We have made effort to design and implement high speed protocol anomaly and signature based intrusion detection approach to detect known and unknown attacks. This approach extracts a set of service fields from the application payload where many attacks occur and analyzes the value of fields to verify attack. This approach is implemented on the FPGA (Xilinx Virtex II pro) device to process packet at gigabit-per-second data rates. © Springer-Verlag Berlin Heidelberg 2006.
KSP 제안 키워드
False Alarm, Gigabit-Per-Second(Gbps), High Speed, Intrusion Detection Systems(IDSs), Intrusion detection system(IDS), Matching approach, Novel attacks, Xilinx virtex, data rate, network intrusion detection system, pattern matching