Institutional Repository
Technical University of Crete
EN  |  EL

Search

Browse

My Space

Scalable multigigabit pattern matching for packet inspection

Pnevmatikatos Dionysios, Ioannis Sourdis

Simple record


URIhttp://purl.tuc.gr/dl/dias/462EDC8C-EAFE-4231-8420-BB84A128C339-
Identifierhttps://doi.org/10.1109/TVLSI.2007.912036-
Languageen-
Extent11 pagesen
TitleScalable multigigabit pattern matching for packet inspectionen
CreatorPnevmatikatos Dionysiosen
CreatorΠνευματικατος Διονυσιοςel
CreatorIoannis Sourdisen
Creatoren
PublisherInstitute of Electrical and Electronics Engineersen
Content SummaryIn this paper, we consider hardware-based scanning and analyzing packets payload in order to detect hazardous contents. We present two pattern matching techniques to compare incoming packets against intrusion detection search patterns. The first approach, decoded partial CAM (DpCAM), predecodes incoming characters, aligns the decoded data, and performs logical and on them to produce the match signal for each pattern. The second approach, perfect hashing memory (PHmem), uses perfect hashing to determine a unique memory location that contains the search pattern and a comparison between incoming data and memory output to determine the match. Both techniques are well suited for reconfigurable logic and match about 2200 intrusion detection patterns using a single Virtex2 field-programmable gate-array device. We show that DpCAM achieves a throughput between 2 and 8 Gb/s requiring 0.58-2.57 logic cells per search character. On the other hand, PHmem designs can support 2-5.7 Gb/s using a few tens of block RAMs (630-1404 kb) and only 0.28-0.65 logic cells per character. We evaluate both approaches in terms of performance and area cost and analyze their efficiency, scalability, and tradeoffs. Finally, we show that our designs achieve at least 30% higher efficiency compared to previous work, measured in throughput per area required per search character.en
Type of ItemPeer-Reviewed Journal Publicationen
Type of ItemΔημοσίευση σε Περιοδικό με Κριτέςel
Licensehttp://creativecommons.org/licenses/by/4.0/en
Date of Item2015-10-19-
Date of Publication2008-
SubjectMonitoring of computer networksen
SubjectNetwork monitoring (Computer networks)en
Subjectcomputer networks monitoringen
Subjectmonitoring of computer networksen
Subjectnetwork monitoring computer networksen
Bibliographic CitationI. Sourdis, D.N. Pnevmatikatos, S. Vassiliadis, "Scalable multigigabit pattern matching for packet inspection’’, IEEE Trans. on Very Large Scale Integ. , vol. 16 , no. 2,pp.156 - 166,2008.doi:10.1109/TVLSI.2007.912036en

Services

Statistics