poster

SANS: a scalable architecture for network intrusion prevention with stateful frontend

Authors:

Fei He,

Yaxuan Qi,

Yibo Xue,

Jun LiAuthors Info & Claims

ANCS '09: Proceedings of the 5th ACM/IEEE Symposium on Architectures for Networking and Communications Systems

Pages 181 - 182

https://doi.org/10.1145/1882486.1882532

Published: 19 October 2009 Publication History

Get Access

Abstract

Inline stateful and deep inspection for intrusion prevention is becoming more challenging due to the increase in both the volume of network traffic and the complexity of the analysis requirements. In this work, we pursue a novel architectural approach, named SANS, which takes both the advantage of new generation network processors for packet-header-based processing and the advantage of commodity x86 platforms for packet payload data processing. A session table scheme is designed for the stateful frontend in SANS to achieve wire speed inline processing.

References

[1]

Sourdis, I., Dimopoulos, V., Pnevmatikatos, D. and Vassiliadis, S., 2006. Packet Pre-filtering for Network Intrusion Detection. ANCS 2006.

Digital Library

Google Scholar

[2]

Handley, M., Paxson, V. and Kreibich, C. 2001. Network intrusion detection: evasion, traffic normalization, and end-to-end protocol semantics. SSYM 2001.

Digital Library

Google Scholar

[3]

LBNL/ICSI Enterprise Tracing Project, http://www.icir.org/enterprise-tracing/index.html.

Google Scholar

Cited By

View all

Qi YHe FWang XChen XXue YLi JOnufryk PRamakrishnan KCrowley PWroclawski J(2009)OASisProceedings of the 5th ACM/IEEE Symposium on Architectures for Networking and Communications Systems10.1145/1882486.1882502(66-67)Online publication date: 19-Oct-2009
https://dl.acm.org/doi/10.1145/1882486.1882502

Index Terms

SANS: a scalable architecture for network intrusion prevention with stateful frontend
1. Security and privacy
  1. Network security

Recommendations

NIDS: A Network Based Approach to Intrusion Detection and Prevention
IACSIT-SC '09: Proceedings of the 2009 International Association of Computer Science and Information Technology - Spring Conference

Computer networks have added new dimensions to the global communication. But intrusions and misuses have always threatened the secured data communication over networks. Consequently, network security has come into issue. Now-a-days intrusion detection ...
RIDS: An Instant Approach to Network Intrusion Detection and Prevention
ICECT '09: Proceedings of the 2009 International Conference on Electronic Computer Technology

With the progression of time, we have been blessed with the gifts of science. Computer networks are one of those gifts. But as the network proceeded, intrusions and misuses followed. Consequently, network security has come to the fore front and has ...
C Compiler Design for an Industrial Network Processor
OM '01: Proceedings of the 2001 ACM SIGPLAN workshop on Optimization of middleware and distributed systems

One important problem in code generation for embedded processors is the design of efficient compilers for ASIPs with application specific architectures. This paper outlines the design of a C compiler for an industrial ASIP for telecom applications. The ...

Comments

Information & Contributors

Information

Published In

ANCS '09: Proceedings of the 5th ACM/IEEE Symposium on Architectures for Networking and Communications Systems

October 2009

227 pages

ISBN:9781605586304

DOI:10.1145/1882486

General Chairs:
Peter Onufryk
IDT
,
K. K. Ramakrishnan
AT&T Labs - Research
,
Program Chairs:
Patrick Crowley
Washington University in St. Louis
,
John Wroclawski
USC

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 19 October 2009

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Poster

Funding Sources

Ministry of Science and Technology of the People's Republic of China

Conference

ANCS '09

Sponsor:

SIGCOMM
SIGARCH
IEEE-CS\TCCA

ANCS '09: Symposium on Architecture for Networking and Communications Systems

October 19 - 20, 2009

New Jersey, Princeton

Acceptance Rates

Overall Acceptance Rate 88 of 314 submissions, 28%

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

1
Total Citations
View Citations
107
Total Downloads

Downloads (Last 12 months)0
Downloads (Last 6 weeks)0

Reflects downloads up to 26 Jul 2024

Other Metrics

View Author Metrics

Citations

Cited By

View all

Qi YHe FWang XChen XXue YLi JOnufryk PRamakrishnan KCrowley PWroclawski J(2009)OASisProceedings of the 5th ACM/IEEE Symposium on Architectures for Networking and Communications Systems10.1145/1882486.1882502(66-67)Online publication date: 19-Oct-2009
https://dl.acm.org/doi/10.1145/1882486.1882502

View Options

Get Access

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Cited By

Index Terms

Recommendations

NIDS: A Network Based Approach to Intrusion Detection and Prevention

RIDS: An Instant Approach to Network Intrusion Detection and Prevention

C Compiler Design for an Industrial Network Processor

Comments

Published In

Sponsors

Publisher

Publication History

Permissions

Check for updates

Author Tags

Qualifiers

Funding Sources

Conference

Acceptance Rates

Other Metrics

Article Metrics

Other Metrics

Cited By

Login options

Full Access

PDF

eReader

Abstract

References

Cited By

Index Terms

Recommendations

NIDS: A Network Based Approach to Intrusion Detection and Prevention

RIDS: An Instant Approach to Network Intrusion Detection and Prevention

C Compiler Design for an Industrial Network Processor

Comments

Information

Published In

Sponsors

Publisher

Publication History

Permissions

Check for updates

Author Tags

Qualifiers

Funding Sources

Conference

Acceptance Rates

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

Get Access

Login options

Full Access

View options

PDF

eReader

Figures

Other

Share

Share this Publication link

Share on social media

Affiliations