Title :
A scalable network port scan detection system on FPGA
Author :
Anand, Tejasvi ; Waghela, Yagnesh ; Varghese, Kuruvilla
Author_Institution :
Centre for Electron. Design & Technol. (CEDT), Indian Inst. of Sci., Bangalore, India
Abstract :
With ever increasing network speed, scalable and reliable detection of network port scans has become a major challenge. In this paper, we present a scalable and flexible architecture and a novel algorithm, to detect and block port scans in real time. The proposed architecture detects fast scanners as well as stealth scanners having large inter-probe periods. FPGA implementation of the proposed system gives an average throughput of 2 Gbps with a system clock frequency of 100 MHz on Xilinx Virtex-II Pro FPGA. Experimental results on real network trace show the effectiveness of the proposed system in detecting and blocking network scans with very low false positives and false negatives.
Keywords :
computer network security; field programmable gate arrays; FPGA; Xilinx Virtex-II Pro FPGA; fast scanners; field programmable gate array; frequency 100 MHz; network port scan detection system; stealth scanners; Aggregates; Clocks; Computer aided manufacturing; Field programmable gate arrays; IP networks; Random access memory; Throughput;
Conference_Titel :
Field-Programmable Technology (FPT), 2011 International Conference on
Conference_Location :
New Delhi
Print_ISBN :
978-1-4577-1741-3
DOI :
10.1109/FPT.2011.6132712
