A Hardware Platform for Network Intrusion Detection and Prevention

Network Processor Design

Volumn , Issue , 2005, Pages 99-118

  Clark, Chris ^a   Lee, Wenke ^b   Schimmel, David ^a   Contis, Didier ^a   Koné, Mohamed ^b   Thomas, Ashley ^b  

^a GEORGIA INSTITUTE OF TECHNOLOGY   (United States)

^b Georgia Institute of Technology   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

EID: 84882798973     PISSN: None     EISSN: None     Source Type: Book    
DOI: 10.1016/B978-012088476-6/50007-1     Document Type: Chapter

References (28)

1. Allen J., Christie A., Fithen W., McHugh J., Pickel J., Stoner E. State of the Practice of Intrusion Detection Technologies. CMU/SEI, Technical Report 99-TR-028 2000.
2. Lippmann R., Fried D., Graf I., Haines J., Kendall K., McClung D., Weber D., Webster S., Wyschogrod D., Cunninghan R., Zissman M. Evaluating intrusion detection systems: The 1998 DARPA off-line intrusion detection evaluation. Proceedings of DARPA Information Survivability Conference and Exposition 2000, vol.2:12-26.
3. Lippmann R., Haines J., Fried D., Korba J., Das K. Analysis and results of the 1999 DARPA off-line intrusion detection evaluation. Proceedings of Recent Advances in Intrusion Detection (RAID) 2000, 162-182.
4. Paxson V. Bro: A system for detecting network intruders in real-time. Computer Networks 1999, 31(23-24):2435-2463.
5. Ptacek T.H., Newsham T.N. Insertion, Evasion, and Denial of Service: Eluding Network Intrusion Detection. Technical Report 1998, Secure Networks Inc.
6. Roberts L.G. Beyond Moore's law: Internet growth trends. IEEE Computer 2000, 117-119. January.
7. 3Com Embedded Firewall Architecture for e-business 2002, 3Com Corporation.
8. Balasubramaniyan J., Garcia-Fernandez J., Isacoff D., Spafford E., Zamboni D. An architecture for intrusion detection using autonomous agents. Proceedings of Computer Security Applications Conference 1998, 13-24.
9. Bellovin S.M. Distributed Firewalls 1999, login:, November.
10. Gopalakrishna R., Spafford E.H. A framework for distributed intrusion detection using interest-driven cooperating agents. Proceedings of Recent Advances in Intrusion Detection (RAID) 2001, http://www.raid.
11. Payne C., Markham T. Architecture and applications for a distributed embedded firewall. Proceedings of Computer Security Applications Conference 2001, http://www.acsac.org/2001/papers/73.pdf.
12. Porras P.A., Neumann P.G. EMERALD: Event monitoring enabling responses to anomalous live disturbances. Proceedings of National Information Systems Security Conference 1997, 353-365.
13. Vigna G., Kemmerer R.A., Blix P. Designing a web of highly-configurable intrusion detection sensors. Proceedings of Recent Advances in Intrusion Detection (RAID) 2001, 69-84.
14. Gigabit Ethernet Intrusion Detection Solutions: Internet Security Systems RealSecure Network Sensors and Top Layer Networks AS3502 Gigabit AppSwitch Performance Test Results and Configuration Notes 2000.
15. Kruegel C., Valeur F., Vigna G., Kemmerer R.A. Stateful intrusion detection for high speed networks. Proceedings of IEEE Symposium on Security and Privacy 2002, 285-293.
16. Roesch M. Snort-Lightweight intrusion detection for networks. Proceedings of USENIXLISA Conference 1999.
17. "ENP-2505/2506 Data Sheet," RadiSys Corporation, www. radisys. com/oem_products/ds-page. cfm ?productdatasheetsid=1055.
18. "Look Aside Interface LA-1.0," Network Processor Forum, www. npforum. org/techinfo/approved.shtml.
19. "Intel Network Processors," Intel Corporation, www. intel. com/design/network/products/npfamily/.
20. "Virtex and Virtex-E Overview," Xilinx, Inc, www.xilinx.com/xlnx/xil _prodcat_product.jsp ?title=ss_vir.
21. S. McCanne, C. Leres, and V Jacobson, "libpcap," 1994.ftp.ee.lbl.gov.
22. Mackenzie K., Shi W., McDonald A., Ganev I. An Intel IXP1200-based network interface. Proceedings of Workshop on Novel Uses of System Area Networks at HPCA (SAN-2) 2003, http://www.cs.arizona.edu/hpca9.
23. Fisk M., Varghese G. Fast Content-based Packet Handling for Intrusion Detection. UCSD, Technical Report CS2001-0670 2001.
24. Staniford S., Coit C.J., McAlerney J. Towards faster string matching for intrusion detection. Proceedings of DARPA Information Survivability Conference 2001, vol.1:367-373.
25. Clark C.R., Schimmel D.E. Efficient reconfigurable logic circuits for matching complex network intrusion detection patterns. Proceedings of International Conference on Field Programmable Logic and Applications (FPL) 2003, 956-959.
26. Clark C.R., Schimmel D.E. A pattern-matching co-processor for network intrusion detection systems. Proceedings of International Conference on Field-Programmable Technology (FPT) 2003, 68-74.
27. 100 Mbps IDS Group Test 2003, The NSS Group. http://www.nss.co.uk, E. 4 (Ed.).
28. Clark C.R., Schimmel D.E. Scalable pattern matching on high-speed networks. Proceedings of IEEE Symposium on Field-Programmable Custom Computing Machines (FCCM) 2004, 249-257.