Journal Article10.1016/J.COMCOM.2011.03.014
A fast pattern matching algorithm with multi-byte search unit for high-speed network security
17
TL;DR: It is shown that the L^+^1-MWM algorithm improves the performance of the MWM algorithm by as much as 20% in average under various lengths of shortest patterns and normal traffic conditions, and the proposed algorithm minimizes the performance degradation that is originated from the dependency on the length of the shortest pattern.
read more
About: This article is published in Computer Communications. The article was published on 01 Sep 2011. The article focuses on the topics: Shortest Path Faster Algorithm & Commentz-Walter algorithm.
read more
Chat with Paper
AI Agents for this Paper
Find similar papers on Google Scholar, PubMed and Arxiv
Write a critical review of this paper
Analyze citations of this paper to find unaddressed research gaps
Citations
EFM: Enhancing the performance of signature-based network intrusion detection systems using enhanced filter mechanism
TL;DR: The proposed enhanced filter mechanism, named EFM, can overall enhance the performance of a signature-based NIDS such as Snort in the aspects of packet filtration, signature matching improvement and false alarm reduction without affecting network security.
119
Towards adaptive character frequency-based exclusive signature matching scheme and its applications in distributed intrusion detection
TL;DR: The experimental results demonstrate that the proposed ACF-EX scheme can positively reduce the time consumption of signature matching and that the scheme is promising in constructing a packet filter to reduce the burden of a signature-based NIDS.
31
A Distributed Signature Detection Method for Detecting Intrusions in Sensor Systems
TL;DR: A novel distributed network intrusion detection system based on the Wu–Manber algorithm that achieves efficient utilization of the sensor nodes and provides a structural basis of cooperative systems among the sensors.
12
BLAST: B-LAyered bad-character SHIFT tables for high-speed pattern matching
Yoon Ho Choi,Seung-Woo Seo +1 more
TL;DR: A new multi-pattern matching algorithm, called BLAST (B-LAyered bad-character Shift Tables with a single-byte search unit), which considers space-time tradeoff in the context of shift values during the search and provides the faster search time than the other algorithms.
9
An Improved Multi-pattern Matching Algorithm for Large-Scale Pattern Sets
Peng Zhan,Wang Yu-ping,Xue Jinfeng +2 more
- 15 Nov 2014
TL;DR: An improved multi-pattern matching algorithm based on the framework of the Wu-Manber (WM) algorithm is proposed to effectively deal with the large pattern sets and is shown to be efficient for large-scale pattern sets.
4
References
•Proceedings Article
Snort - Lightweight Intrusion Detection for Networks
Martin Roesch
- 12 Nov 1999
TL;DR: Snort provides a layer of defense which monitors network traffic for predefined suspicious activity or patterns, and alert system administrators when potential hostile traffic is detected.
Fast Pattern Matching in Strings
TL;DR: An algorithm is presented which finds all occurrences of one given string within another, in running time proportional to the sum of the lengths of the strings, showing that the set of concatenations of even palindromes, i.e., the language $\{\alpha \alpha ^R\}^*$, can be recognized in linear time.
3.4K
Efficient string matching: an aid to bibliographic search
TL;DR: A simple, efficient algorithm to locate all occurrences of any of a finite number of keywords in a string of text that has been used to improve the speed of a library bibliographic search program by a factor of 5 to 10.
A fast string searching algorithm
TL;DR: The algorithm has the unusual property that, in most cases, not all of the first i.” in another string, are inspected.
Intrusion Detection Systems
Rebecca Bace,Peter Mell +1 more
- 01 Nov 2001
TL;DR: This guidance document is intended as a primer in intrusion detection, developed for those who need to understand what security goals intrusion detection mechanisms serve, how to select and configure intrusion detection systems for their specific system and network environments, how to manage the output of intrusion detection systems, and how to integrate intrusion detection functions with the rest of the organizational security infrastructure.