FPGA-Based Parallel Pattern Matching Algorithm for Network Intrusion Detection System

Abstract

Pattern matching is the critical part in Network Intrusion Detection System (NIDS). Fast pattern matching algorithm is the key to improve the system performance. In this paper, a fast reverse pattern matching algorithm and the hardware implementation suitable with Field Programmable Gate Array (FPGA) are proposed. Taking advantage of the parallelism and programmability of FPGA, this design reduces the pattern match delay greatly. This design is implemented in a NetFPGA platform, which is an open hardware platform optimized for high-speed network. The parallel pattern matching system provides a high throughput of 4Gbps with no data loss, which proves the information processing rate of this design.

4 Figures and Tables

Cite this paper

@article{Yu2009FPGABasedPP, title={FPGA-Based Parallel Pattern Matching Algorithm for Network Intrusion Detection System}, author={Jing Yu and Bo Yang and Ruiyuan Sun and Zhenxiang Chen}, journal={2009 International Conference on Multimedia Information Networking and Security}, year={2009}, volume={2}, pages={458-461} }