DocumentCode
2734572
Title
Implementation of simple SNORT processor for efficient Intrusion Detection systems
Author
Azimi, Ehsan ; Ghoushchi, M. B Ghaznavi ; Rahmani, Amir Masoud
Author_Institution
Dept. of CE. Sch. of Eng., Islamic Azad Univ., Tehran, Iran
Volume
3
fYear
2009
fDate
20-22 Nov. 2009
Firstpage
533
Lastpage
537
Abstract
In this paper, a method is proposed for hardware implementation of basic instructions of SNORT software for using in hardware accelerator systems relating to Network Intrusion Detection (NID). The design is implemented in Verilog hardware description language. The design is synthesized both in FPGA on Virtex5 and ASIC (with CMOS Technology 90 nm and 65 nm). Initial results of hardware description simulation agree with those of SNORT. Similarity between these two results shows that the proposed hardware infrastructure can be exploited as a hardware accelerator in different applications of Intrusion Detection (ID) within networks where needs high processing rate for multi Gb/s data rates. The ASIC synthesis results indicate that the proposed hardware can process payload section of a TCP/IP stream with the rate of 1 Gb/s and 2 Gb/s in TSMC 90 nm and TSMC 65 nm respectively.
Keywords
application specific integrated circuits; field programmable gate arrays; hardware description languages; operating systems (computers); security of data; CMOS technology; SNORT software; Verilog hardware description language; Virtex5 FPGA; application specific integrated circuit; field programmable gate array; hardware accelerator systems; intrusion detection systems; size 65 nm; size 90 nm; Application specific integrated circuits; Computer networks; Field programmable gate arrays; Hardware design languages; Intrusion detection; Network synthesis; Open source software; Operating systems; Pattern matching; Software systems; ASIC; FPGA; hardware accelerators; hardware description languges; network intrusion detection systems; snort;
fLanguage
English
Publisher
ieee
Conference_Titel
Intelligent Computing and Intelligent Systems, 2009. ICIS 2009. IEEE International Conference on
Conference_Location
Shanghai
Print_ISBN
978-1-4244-4754-1
Electronic_ISBN
978-1-4244-4738-1
Type
conf
DOI
10.1109/ICICISYS.2009.5358130
Filename
5358130
Link To Document