Title :
Fast proxyless stream-based anti-virus for Network Function Virtualization
Author :
Chia-Nan Kao ; Si, Salim ; Nen-Fu Huang ; I-Ju Liao ; Rong-Tai Liu ; Hsien-Wei Hung
Author_Institution :
Inst. of Commun. Eng., Nat. Tsing Hua Univ., Hsinchu, Taiwan
Abstract :
Network anti-virus (AV) solutions are the first line of defense against malicious software. Traditional proxy-based network anti-virus solutions with store-scan-forward techniques decrease network performance and consume massive amounts of memory. Therefore, traditional solutions are not easily adaptable for Network Function Virtualization (NFV). This paper details the work on a novel virus scanning solution for NFV, called StreamAV. It does not require a proxy and maintains high network performance with less memory usage. StreamAV conducts policy matching on streams, rather than on complete files. This eliminates buffering, thereby accelerating traffic and requiring far less memory than solutions that scan complete files. The prototype was 40 times faster than its closest open source competitor, while its memory consumption was only a fraction of that of this competitor. Coverage was 100% with random test samples.
Keywords :
computer network security; computer viruses; virtualisation; NFV; StreamAV; malicious software; memory consumption; network AV solution; network function virtualization; network performance; policy matching; proxy-based network antivirus solutions; proxyless stream-based antivirus; store-scan-forward techniques; virus scanning solution; Decoding; Logic gates; Malware; Memory management; Postal services; Protocols; Virtualization; Network Function Virtualization; Proxyless; Stream-based Anti-virus;
Conference_Titel :
Network Softwarization (NetSoft), 2015 1st IEEE Conference on
Conference_Location :
London
DOI :
10.1109/NETSOFT.2015.7116154
