Title :
Software-based Packet Classification in Network Intrusion Detection System using Network Processor
Author :
Salim, Robin ; Rao, G. S V Radha Krishna
Author_Institution :
Fac. of Inf. Technol., Multimedia Univ., Cyberjaya
Abstract :
As computer networking grows more important in daily usage, its security is also paramount. Network intrusion detection system (NIDS) observes network traffic for identifying malicious packets. Core to NIDS function is packet classification component. It is in charge of scanning network packet header. An improved packet classification component bears direct result for NIDS performance. This paper discusses technique to improve packet classification through the use of Bloom filter and hash table lookup. Because packet classification is an important function to other networking infrastructure, for instance firewall, quality of service, multimedia communication, an improved packet classification scheme could benefit application in related areas
Keywords :
authorisation; computer networks; cryptography; data structures; information filters; multimedia communication; quality of service; set theory; table lookup; telecommunication security; telecommunication traffic; Bloom filter; NIDS function; computer networking; firewall; hash table lookup; multimedia communication; network intrusion detection system; network processor; network security; network traffic; quality-of-service; scanning network packet header; software-based packet classification; Computer networks; Hardware; Information filtering; Information filters; Information technology; Intrusion detection; Matched filters; Protocols; Quality of service; TCPIP;
Conference_Titel :
TENCON 2006. 2006 IEEE Region 10 Conference
Conference_Location :
Hong Kong
Print_ISBN :
1-4244-0548-3
Electronic_ISBN :
1-4244-0549-1
DOI :
10.1109/TENCON.2006.343902
