| Summary: | 碩士 === 國立成功大學 === 資訊工程學系碩博士班 === 98 === With the rapid growth of Internet traffic in recent years, a large number of viruses and malicious intrusion packets are spreading in the network every day. Network Intrusion Detection System (NIDS) is able to identify attacks by searching a set of patterns. The main drawback of the software-based NIDSs is that they can not process a large number of arriving packets in a short period of time. Therefore, the issue of the hardware implemented NIDS to prevent the malicious attacks from intruders has become more significant.
In this thesis, we propose an efficient architecture based on AC algorithm. Our main idea is to design an architecture that processes multiple packets per clock cycle. The proposed architecture improves the original AC architecture for single search engine and enhances the processing throughput. Compared to the original AC search engine, our proposed approach only requires more 17% to 44% of the total memory while achieving 78% to 98% higher throughput in two-engine system. Although the proposed 8-engine system needs about double to quadruple memory of the original AC search engine, its throughput can reach 393% to 717% of the throughput achieved by the original AC search engine. The simulation shows that the 8-engine system with four duplicated middle layers has the best performance.
|
|---|
