A Fast Regular Expressions Matching Algorithm for NIDS

被引:3
|
作者
Zhang, Meng-meng [1 ]
Sun, Yan [2 ]
Wang, Jing-zhong
机构
[1] North China Univ Technol, Sch Informat Engn, Beijing 100144, Peoples R China
[2] Washington State Univ, Sch Elect Engn & Comp Sci, Pullman, WA 99164 USA
来源
APPLIED MATHEMATICS & INFORMATION SCIENCES | 2013年 / 7卷 / 02期
基金
中国国家自然科学基金;
关键词
NIDS; matching; Snort;
D O I
10.12785/amis/070245
中图分类号
O29 [应用数学];
学科分类号
070104 ;
摘要
In this paper, we propose a new algorithm to accelerate the searching speed in network intrusion detection system (NIDS) and we implement our algorithm in Snort, a popular open-source intrusion detection system. The algorithm is based on the fact that normal data stream rarely matches any virus signature and different packets need to check different keys. The algorithm does not need preprocessing and can check multiple characters in parallel. Experimental results show that our implementation is faster than original NFA/DFA based algorithms to deal with the same real packet traces while consuming an order of magnitude less memory.
引用
收藏
页码:755 / 761
页数:7
相关论文
共 50 条
  • [1] A fast bit-parallel algorithm for matching extended regular expressions
    Yamamoto, H
    Miyazaki, T
    COMPUTING AND COMBINATORICS, PROCEEDINGS, 2003, 2697 : 222 - 231
  • [2] Fast Bit-Parallel Matching for Network and Regular Expressions
    Kaneta, Yusaku
    Minato, Shin-ichi
    Arimura, Hiroki
    STRING PROCESSING AND INFORMATION RETRIEVAL, 2010, 6393 : 372 - 384
  • [3] A Regular Expressions Matching Algorithm Based on Templates Finite Automata
    Li, Yuchong
    Luo, Xingguo
    Shao, Xiangyu
    Wei, Dong
    2015 INTERNATIONAL CONFERENCE ON ICT CONVERGENCE (ICTC), 2015, : 1058 - 1063
  • [4] APPROXIMATE MATCHING OF REGULAR EXPRESSIONS
    MYERS, EW
    MILLER, W
    BULLETIN OF MATHEMATICAL BIOLOGY, 1989, 51 (01) : 5 - 37
  • [5] Experimental Analysis of an Online Dictionary Matching Algorithm for Regular Expressions with Gaps
    Saikkonen, Riku
    Sippu, Seppo
    Soisalon-Soininen, Eljas
    EXPERIMENTAL ALGORITHMS, SEA 2015, 2015, 9125 : 327 - 338
  • [6] Regular image fast matching based on adaptive genetic algorithm
    Chen, SZ
    Hu, T
    Pu, ZB
    Liu, GD
    Liu, BG
    ISTM/2005: 6th International Symposium on Test and Measurement, Vols 1-9, Conference Proceedings, 2005, : 6188 - 6191
  • [7] Matching Regular Expressions on uncertain data
    José Arturo Gil
    Simone Santini
    Algorithmica, 2022, 84 : 532 - 564
  • [8] Matching Regular Expressions on uncertain data
    Gil, Jose Arturo
    Santini, Simone
    ALGORITHMICA, 2022, 84 (02) : 532 - 564
  • [9] Efficient Matching of Regular Expressions with Lookaround Assertions
    Mamouras, Konstantinos
    Chattopadhyay, Agnishom
    PROCEEDINGS OF THE ACM ON PROGRAMMING LANGUAGES-PACMPL, 2024, 8 (POPL): : 2761 - 2791
  • [10] Extending Graph Pattern Matching with Regular Expressions
    Wang, Xin
    Wang, Yang
    Xu, Yang
    Zhang, Ji
    Zhong, Xueyan
    DATABASE AND EXPERT SYSTEMS APPLICATIONS, DEXA 2020, PT II, 2020, 12392 : 111 - 129
12345