基于CAM/TCAM分组的Multi-Gigabit速率模式匹配引擎被引量：2

Multi-Gigabit Rate Pattern-Matching Engine Using Grouping CAM/TCAM

下载PDF

导出

摘要为了提高NIDS中模式匹配模块的处理性能,在分析相关研究的基础上,提出了一种具有multi-gigabit线速度处理能力的模式匹配引擎.该引擎采用按模式串长度和数目不同,在CAM或TCAM中均衡分组存储的方法,以及待测串切换等技术实现了multi-gigabit速率的处理性能和有效的存储空间利用.通过采用多个匹配模块并行处理的方式可以进一步提高引擎的处理能力.在200MHz的时钟工作频率下,系统输出的性能可以达到6Gbit/s以上. In order to improve the performance of pattenvmatching module in NIDS, an efficient engine for multigigahit rate, line-speed pattern-matching is proposed after analyzing a large amount of related work. By grouping and evenly storing patterns into CAM or TCAM acoording to their lengths and amount, as well as using payloadswitching technique, this engine not only reaches multi-gigabit rate performance, but also has high storage efficiency. System performance can be improved further by using multiple process modules in parallel. In a 200 MHz Clock implementation, system throughput can reach more than 6 Gbit/s.

作者何一凡徐国银沈海斌

机构地区浙江大学超大规模集成电路设计研究所杭州文化广播电视集团

出处《电子器件》 CAS 2007年第1期158-161,共4页 Chinese Journal of Electron Devices

关键词入侵检测模式匹配 CAM/TCAM intrusion detection pattern-matching CAM/TCAM

分类号 TN915.08 [电子电信—通信与信息系统]

引文网络
相关文献

参考文献12

1Fisk M,and Varghese G,An Analysis of Fast String Matching Applied to Content-based Forwarding and Intrusion Detection[C]//Technical Report CS2001-0670 (updated version),University of California-San Diego,2002.
2Coit J,Staniford S,and McAlerney M,Towards Faster String Matching for Intrusion Detection or Exceeding the Speed of Snort[C]//DARPA Information Survivability Conference &Exposition Ⅱ (DISCEX'01),June,2001.
3Sidhu R,Prasanna V.Fast Regular Expression Matching Using FPGAs[C]//Proceedings of the 9^th IEEE Symposium on Field-Programmable Custom Computing Machines (FCCM 01),Apr.2001.
4Moscola J,Lockwood J,Loui R,and Pachos M,Implementation of a Content-Scanning Module for an Internet Firewall[C]//Proceedings of the 11^th Annual IEEE Symposium on Field-Programmable Custom Computing Machines (FCCM'03),Apr.2003.
5Dharmapurikar S,Krishnamurthy P,Sproull T,and Lockwood J,Deep Packet Inspection Using Parallel Bloom Filters[J].Micro IEEE,Jan-Feb.2004,24(1):52-61.
6Dharmapurikar D,Attig M,and Lockwood J,Design and Implementation of a String Matching System for Network Intrusion Detection using FPGA-based Bloom Filters[C]//Proceedings of the 12^th Annual IEEE Symposium on Field-Programmable Custom Computing Machines (FCCM'04),Apr.2004.
7Attig M,Dharmapurikar S,and Lockwood J,Implementation Results of Bloom Filters for String Matching[C]//Proceedings of the 12^th Annual IEEE Symposium on Field-Programmable Custom Computing Machines (FCCM'04),Apr.2004.
8Song H,Lockwood J,Multi-pattern Signature Matching for Hardware Network Intrusion Detection Systems[C]//Global Telecommunications Conference,IEEE Globecom 2005.Vol 3,28 Nov.-2 Dec.P1686-1690.
9Gokhale m,et al,Granidt:Towards Gigabit Rate Network Intrusion Detection technology[C]//Proc.of the 12^th international Conference on Field Programmable Logic and Applications (FPL'02),Sep.2002.
10Bu L and Chandy J,FPGA Based Network Intrusion Detection Using Content Addressable Memories[C]//Proceedings of the 12^th Annual IEEE Symposium on Field-Programmable Custom Computing Machines (FCCM04),Apr.2004.

同被引文献25

1刘宗仁.网上内容过滤技术的现状及面临的问题[J].现代情报,2005,25(3):74-75. 被引量：5
2李伟男,鄂跃鹏,葛敬国,钱华林.多模式匹配算法及硬件实现[J].软件学报,2006,17(12):2403-2415. 被引量：42
3CHEN Zhen, LIN Chuang, NI Jia, et al. AntiWorm NPU- based parallel bloom filters for TCP/IP content processing in Giga-Ethernet LAN [C]. [S. l.]: Proceedings of the IEEE Conference on Local Computer Networks 30th Anniversary, 2005.
4CHO Y H, MANGIONE-SMITH W H. Deep network packet filter design for reconfigurable devices [J]. ACM Transactions on Embedded Computing Systems (TECS), 2008, 7(2): 1-26.
5SUNG J S, KANG S M, LEE Y, et al. A multi-gigabit rate deep packet inspection algorithm using TCAM [C]// IEEE GLOBECOM 2005 proceedings.[S. l. ] :IEEE, 2005 : 453-457.
6LIN P, LI Zhi-xiang, LIN Y, et al. Profiling and accelerating string matching algorithms in three network content security applications [J]. IEEE Communications Surveys Tutorials, 2006, 8(2): 24-37.
7KNUTH D E, MORRIS Jr J H, PRATT V R. Fast pattern matching in strings [J]. SIAM Journal on Computing, 1977, 6: 323.
8BOYER R S, MOORE J S. A fast string searching algorithm [J]. Communications of the ACM, 1977, 20 (10) 762-772.
9CROCHEMORE M, CZUMAJ A, GASIENIEC L, et al. Speeding up two string-matching algorithms [J]. Algorithmica, 1994, 12(4):247-267.
10ALLEN J. State of the practice of intrusion detection technologies [R]. [S. l. ] :DTIC Document, 2000.

引证文献2

1赵睿,杜慧敏,张丽果,王亚刚.深度包检测中的模式匹配算法研究[J].现代电子技术,2012,35(3):100-103.
2高海源.在网络分流器中利用TCAM用户空间实现组合规则的算法[J].科技创新导报,2018,15(7):158-160.

1成德峰,马刈非.Ad Hoc网络中基于信道状态的速率自适应机制[J].应用科学学报,2008,26(1):18-21. 被引量：1
2伍裕江.有源天线及Massive MIMO天线测试探讨[J].电信技术,2016(8):100-103. 被引量：4
3戴征坚,郁文贤,胡卫东,杜攀.空间目标的雷达识别技术[J].系统工程与电子技术,2000,22(3):19-22. 被引量：27
4武学彬,薛永林.用于DVB-S2的LDPC编码器设计[J].电视技术,2007,31(B08):114-116. 被引量：7
5戴宏发.北斗导航系统的发展与应用刍议[J].科技信息,2010(19):54-54. 被引量：4
6欧阳岳,徐智纲.NIDS:网络监控利器[J].金融电子化,2004(10):84-84.
7周朝荣,张翼德,冯钢,李乐民.DS-CDMA系统中结合串行干扰消除的资源分配[J].控制与决策,2009,24(8):1143-1149.
8小屏幕有大作为[J].数码世界（A）,2007,6(11A):63-63.
9金松健,张福洪.基于ADS水声通信换能器的宽带实频匹配[J].通信技术,2017,50(2):210-214.
10王曙光.演播室面积与空间利用的探讨[J].现代电视技术,1996(1):71-78.

电子器件

2007年第1期

浏览历史

内容加载中请稍等...

基于CAM/TCAM分组的Multi-Gigabit速率模式匹配引擎被引量：2

参考文献12

同被引文献25

引证文献2

相关作者

相关机构

相关主题

浏览历史

基于CAM/TCAM分组的Multi-Gigabit速率模式匹配引擎 被引量：2

参考文献12

同被引文献25

引证文献2

相关作者

相关机构

相关主题

浏览历史

基于CAM/TCAM分组的Multi-Gigabit速率模式匹配引擎被引量：2