ETRI-Knowledge Sharing Plaform

KOREAN
논문 검색
Type SCI
Year ~ Keyword

Detail

Journal Article The NADIA: A Network Acceleration System with Defense against Network Invasion and Attack
Cited 0 time in scopus Share share facebook twitter linkedin kakaostory
Authors
Sunwook Kim, Byunggu Kim, Seongwoon Kim, Jinwon Park, Yongwha Chung
Issue Date
2012-09
Citation
IETE Journal of Research, v.58, no.5, pp.398-410
ISSN
0377-2063
Publisher
Taylor & Francis, IETE
Language
English
Type
Journal Article
DOI
https://dx.doi.org/10.4103/0377-2063.104158
Abstract
Information security plays a critical role in the design of high-speed network systems, and much attention is focused on the Network Intrusion Prevention System (NIPS) which combines both a firewall and a Network Intrusion Detection System (NIDS). However, the current generation of NIDS/NIPS has several limitations on performance and effectiveness. In this paper, we describe the Network Accelerator with Defense against Invasion and Attack (NADIA) architecture as a network security card. The NADIA system consists of NADIA hardware for network and security processing and NADIA software for a device driver and a management agent. The goal of the network acceleration hardware is to reduce the overhead of the host CPU for network processing. And, the security function hardware performs operations such as network ACL, DPI, DDoS blocking, and session control, in order to check whether the received packets are malicious or not. Based on the performance evaluation, we can confirm that NADIA can reduce the CPU overhead of the network and security processing by a factor of 5~14. Copyright © 2012 by the IETE.