Use this resource - and many more! - in your textbook!
AcademicPub holds over eight million pieces of educational content for you to mix-and-match your way.
StriFA: Stride Finite Automata for High-Speed Regular Expression Matching in Network Intrusion Detection Systems
2013 / IEEE
This item from - IEEE Transaction - Components, Circuits, Devices and Systems - Deep packet inspection has become a key component in network intrusion detection systems (NIDSes), where every packet in the incoming data stream needs to be compared with patterns in an attack database, byte-by-byte, using either string matching or regular expression matching. Regular expression matching, despite its flexibility and efficiency in attack identification, brings significantly high computation and storage complexities to NIDSes, making line-rate packet processing a challenging task. In this paper, we present stride finite automata (StriFA), a novel finite automata family, to accelerate both string matching and regular expression matching. Different from conventional finite automata, which scan the entire traffic stream to locate malicious information, a StriFA only needs to scan a partial traffic stream to find suspicious information. The presented StriFA technique has been implemented in software and evaluated based on different traces. The simulation results show that the StriFA acceleration scheme offers an increased speed over traditional nondeterministic finite automaton/deterministic finite automaton, while at the same time reducing the memory requirement.
Nondeterministic Finite Automaton (nfa)
Deep Packet Inspection (dpi)
Deterministic Finite Automaton (dfa)
Network Intrusion Detection Systems (nidses)
Doped Fiber Amplifiers
Components, Circuits, Devices And Systems