BROWSE
Detail
Conference Paper
Network Intrusion Prevention System based on TOE
Cited - time in 
Share 
Share
- Authors
- Sun Wook Kim, Dae Won Kim, Hak Jae Kim, Seong Joo Lee, Seong Woon Kim
- Issue Date
- 2010-08
- Citation
- International Workshop on Information Security Applications (WISA) 2010, pp.1-6
- Language
- English
- Type
- Conference Paper
- Abstract
- Information security plays a critical role in designing a high-speed network system, and much attention is paid to Network Intrusion Prevention System (NIPS) which combines both firewall and Network Intrusion Detection System (NIDS). However, the current generation of the NIDS/NIPS has several limitations on their performance and effectiveness. In this paper, we propose TOE-based NIPS architecture to design a network security card that has some network protocol offloading features in order to accelerate network processing capability and to reduce the CPU overhead of network processing, and it has NIPS features to inspect both packet headers and payloads and blocks the suspicious packets from entering the network like a firewall. To verify proposed TOE-based NIPS architecture, we have developed the prototype of TOE-based NIPS which consists of TOE-based NIPS hardware and TOE-based NIPS software. Based on the experimental results, the prototype of TOE-based NIPS could reduce the CPU computing power of the Snort-based general system in sending and receiving operations.
- KSP Keywords
- CPU overhead, Computing power, Current generation, Detection Systems(IDS), High-speed networks, Intrusion Prevention Systems(IPS), Network Intrusion Detection System, Network protocols, Network system, Processing capability, Protocol offloading