کد مقاله | کد نشریه | سال انتشار | مقاله انگلیسی | نسخه تمام متن |
---|---|---|---|---|
451227 | 694264 | 2011 | 14 صفحه PDF | دانلود رایگان |
![عکس صفحه اول مقاله: Deep packet pre-filtering and finite state encoding for adaptive intrusion detection system Deep packet pre-filtering and finite state encoding for adaptive intrusion detection system](/preview/png/451227.png)
An intrusion detection system (IDS) is a promising technique for detecting and thwarting attacks on computer systems and networks. In the context of ever-changing threats, new attacks are constantly created, and new rules for identifying them are dramatically increasing. To adapt to these new rules, IDSs must be easily reconfigurable, they must keep up with line rates of network traffic, and they must have high detection accuracy. In this paper, we propose a high-performance memory-based IDS that can be easily reconfigured for new rules. Our IDS achieves high performance and memory efficiency by utilizing deep packet pre-filtering and novel finite state encoding. We present simulation and experimental results that show the novelty and feasibility of our system.
Journal: Computer Networks - Volume 55, Issue 8, 1 June 2011, Pages 1648–1661