AntiWorm NPU-based parallel bloom filters in Giga-Ethernet LAN

IEEE International Conference on Communications

Volumn 5, Issue , 2006, Pages 2118-2123

  Chen, Zhen ^b   Lin, Chuang ^a   Ni, Jia ^b   Ruan, Dong Hua ^b   Zheng, Bo ^b   Tan, Zhang Xi ^b   Jiang, Yi Xin ^b   Peng, Xue Hai ^b   Luo, An An ^b   Zhu, Bing ^b   Yue, Yao ^b   Wang, Yang ^b   Ungsunan, Peter ^b   Ren, Feng Yuan ^b  

^a IEEE

^b NONE

Author keywords

Computer networks; IXP network processor; Network processors; Network security; Parallel bloom filters; Worm blaster; Worms

Indexed keywords

COMPUTER WORMS; IDENTIFICATION (CONTROL SYSTEMS); NETWORK SECURITY; PROGRAM PROCESSORS;

IXP NETWORK PROCESSOR; NETWORK PROCESSORS; PARALLEL BLOOM FILTERS; WORM BLASTER;

LOCAL AREA NETWORKS;

EID: 42549117244     PISSN: 05361486     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ICC.2006.255083     Document Type: Conference Paper

References (31)

1. B. Bloom, "Space/Time Trade-Offs in Hash Coding with Allowable Errors," Comm. ACM, vol. 13, no. 7, May 1970, pp. 422-426.
2. Michael Mitzenmacher, "Compressed Bloom Filters," IEEE/ACM Transaction on networking, vol. 10, no. 5, October 2002.
3. Douglas E. Comer, "Network System Design: Using Network Processors," Pearson Education Inc., 2004.
4. Special issues on Network Processors, Intel Technology Journal, Volume 06, Issue 03, August 15, 2002.
5. Bill Carlson, Intel Internet Exchange Architecture and Applications: A Practical Guide to Intel Network Processors, Intel Press, 2003.
6. Erik J. Johnson and Aaron R. Kunze, IXP2400/2800 Programming: The Complete Microengine Coding Guide, Intel Press, 2003.
7. Peder Jungck and Simon S.Y. Shim, "Issues in High-Speed Internet Security," IEEE computer magazine, Vol. 37, No. 7, pp. 36-42, July 2004.
8. First Proceedings of the 2003 ACM workshop on Rapid Malcode (WORM'2003), October 2003.
9. Second Proceedings of the 2004 ACM workshop on Rapid Malcode (WORM'2004), October 29, 2004, Washington, DC, USA.
10. I. Arce and E. Levy, "An analysis of the Slapper worm," IEEE Security & Privacy, Vol. 1 No. 1, Pages: 82-87, Jan.-Feb. 2003.
11. D. Moore, V. Paxson, S. Savage, C. Shannon, S. Staniford, and N. Weaver. "Slammer Worm Dissection: Inside the Slammer Worm," IEEE Security & Privacy, Vol. 1 No. 4, Pages: 33-39, July-August 2003.
12. S. J. Stolfo, "Worm and attack early warning: piercing stealthy reconnaissance," IEEE Security & Privacy, Volume: 02, Issue: 3, Pages: 73-75, May-June 2004.
13. J. Pincus and R. Baker, "Beyond stack smashing: recent advances in exploiting buffer overruns," IEEE Security & Privacy Magazine, Volume 2, Issue: 4, page(s): 20-27: July-Aug. 2004.
14. C. Shannon and D. Moore, "The spread of the Witty worm," IEEE Security & Privacy Magazine, Volume 2, Issue: 4, page(s): 46-50, July-Aug. 2004.
15. E. Levy, Approaching zero [attack trends], IEEE Security & Privacy Magazine, Volume 2, Issue: 4, page(s): 65-66, July-Aug. 2004.
16. J. Newsome, B. Karp and D. Song, "Polygraph: Automatically Generating Signatures for. Polymorphic Worms," to appear in Proceedings of the IEEE Symposium on Security and. Privacy (Oakland 2005), May 2005.
17. Tadayoshi Kohno, Andre Broido and KC Claffy, "Remote Physical Device Fingerprinting," to appear in Proceedings of the IEEE Symposium on Security and. Privacy (Oakland 2005), May 2005.
18. Y. Xie, V. Sekar, DA Maltz, MK Reiter, H. Zhang, "Worm Origin Identification Using Random Walks," To appear in Proceedings of the IEEE Symposium on Security and Privacy (Oakland 2005), Oakland, CA, May 2005.
19. D. Moore, C. Shannon, and J. Brown. "Code-Red: a case study on the spread and victims of an internet worm," Proceedings of the Internet Measurement Workshop 2002, Marseille France, November 2002.
20. Sarang Dharmapurikar, Praveen Krishnamurthy, T.S. Sproull and J. W. Lockwood, "Deep packet inspection using parallel bloom filters," IEEE Micro, Volume 24, Issue 1, Pages:52-61, Jan.-Feb. 2004.
21. D. V. Schuehler, J. Moscola and J. W. Lockwood, "Architecture for a hardware-based, TCP/IP content-processing system," IEEE Micro, Volume 24, Issue 1, Pages: 62-69, Jan.-Feb. 2004.
22. Zhangxi Tan, Chuang Lin, Hao Yin, Bo Li, "Optimization and Benchmark of Cryptographic Algorithms on Network Processors", IEEE Micro., Volume 24, Issue 5,Sep-Oct issues, 2004.
23. Signature of worm, see http://www.clamav.net
24. Symantec Inc., see http://www.symantec.com/
25. Silicon Defense, see http://www.silicondefense.com
26. Snort, see http://www.snort.org/
27. Sourcefire, see http://www.sourcefire.com/
28. Intel Corporation, IXP2400/IXP2800 Network Processor, technique documents, 2004.
29. Radisys Corporations, ENP-2611 technique documents, 2004.
30. R. Rivest, The MD5 Message-Digest Algorithm, www.ietf.org/rfc/rfc1321. txt.
31. S. Iyer, R. Rao Kompella, and A. Shelat, "ClassPI:an architecture for fast and flexible packet classification," IEEE Networks, Volume: 15, Issue: 2, Mar/Apr 2001.