초고속 네트워크 환경에 적합한 안전하고 효율적인 침입 탐지
(An) efficient and secure network-based intrusion detection system(ES-NIDS) for high-speed network
- 원문 URL
This paper presents an efficient model for Network-based Intrusion Detection System(NIDS). The system enhances the security by encoding the rule-set and log data using XOR operation, and improves the packet processing rate by using the technique of kernel-based packet capturing. The system applies hashing for searching IP and port number and realizes the pattern matching tree on RAM for fast pattern matching using AC-BM algorithm. The proposed model offers safe and efficient functions for NIDS. In conclusion, the model of Network-based Intrusion Detection System suggested in this study offers safe and effective function for protecting data and log, and can conduct fast detection of network intrusion.