Abstract | ||
---|---|---|
Network security has been a serious problem in the Internet. To face this issue, network intrusion detection tools have become indispensable for computer systems and network gateways. In this paper we propose an embedded, multi-core aware network intrusion detection system (NIDS), which has the following features: 1) It integrates a novel multi-core aware packet capture module, called the MCA ring, and an NIDS. 2) It exploits a zero-copy mechanism to remove the overheads of packet copy processing from the network interface driver to the NIDS application. 3) It uses the concept of process and IRQ affinity to enhance the processing speed. The performance of NIDS under different packet capture modules in multi-gigabits networks has also been analyzed and presented in this paper. The results show that our integrated multi-core aware MCA ring and NIDS is effective for detecting network intrusion attacks in multi-gigabits networks. |
Year | DOI | Venue |
---|---|---|
2013 | 10.1109/CSE.2013.119 | C3S2E |
Keywords | Field | DocType |
network intrusion attack,network intrusion detection tool,multi-core aware packet capture,different packet capture module,network interface driver,network security,integrated multi-core aware mca,nids application,network gateway,multi-core aware network intrusion,multi-gigabits network,internet,computer network security | Host-based intrusion detection system,Packet analyzer,Computer science,Network security,Network packet,Computer network,Multi-core processor,Embedded system,The Internet,Processing delay,Network interface | Conference |
ISSN | Citations | PageRank |
1949-0828 | 1 | 0.35 |
References | Authors | |
9 | 2 |
Name | Order | Citations | PageRank |
---|---|---|---|
Chia-Hao Hsu | 1 | 44 | 11.63 |
Sheng-De Wang | 2 | 720 | 68.13 |