期刊文献+
任意字段
题名或关键词
题名
关键词
文摘
作者
第一作者
机构
刊名
分类号
参考文献
作者简介
基金资助
栏目信息

一种面向入侵检测的快速多模式匹配算法 被引量:8

Fast multi-pattern matching algorithm for intrusion detection
下载PDF
导出
摘要 随着网络速度和入侵检测规则的持续增长,模式匹配正在成为网络入侵检测系统的性能瓶颈。提出了一种新的Wu-Manber类型的模式匹配算法,通过将模式分组,对不同予模式组采用不同匹配方法,显著提高了模式匹配的效率。对比实验表明,当模式组中含有长度小于3的模式时,新算法性能比原算法平均提高了29%-44%。 With network speed and the number of rules constantly increasing, pattern matching is becoming the bottleneck in Network Intrusion Detection System ( NIDS), This paper proposed a fast Wu-Manber-like multi-pattern matching algorithm for intrusion detection, called FWM. By subdividing the pattern group into two subgroups and dealing with the two subgroups in different methods, the FWM algorithm enhanced the efficiency of pattern matching. Experimental results show that, when pattern group contains the pattern that is less than three bytes, the FWM algorithm improves average performance by 29% - 44% compared to the original NIDS pattern matching algorithm.
作者 高朝勤 陈元琰 李梅
机构地区 广西师范大学计算机科学与信息工程学院
出处 《计算机应用》 CSCD 北大核心 2008年第1期82-84,共3页 journal of Computer Applications
基金 广西自然科学基金资助项目(0728099)
关键词 多模式匹配 入侵检测系统 Wu—Manber算法 网络安全 multi-pattern matching intrusion detection system Wu-Manber algorithm network security
分类号 TP393.08 [自动化与计算机技术—计算机应用技术]
  • 相关文献

参考文献6

  • 1FISK M, VARGHESE G. An analysis of fast string matching applied to content-based forwarding and intrusion detection, CS2001-0670 ( updated version) [ R]. San Diego: University of California, 2002.
  • 2BOYER R S, MOORE J S. A fast string searching algorithm [ J]. Communications of the ACM, 1977, 20(10) :762 -772.
  • 3HORSPOOL R N. Practical fast searching in strings [ J]. Software- Practice and Experience, 1980, 10(6) : 501 -506.
  • 4wu s, MANBER U. A fast algorithm for multi-pattern searching, TR-94-17[ R]. Tucson: University of Arizona, 1994.
  • 5Snort2.6.0 [ EB/OL]. [ 2006 - 12 -05]. http://www, snort, org/ dl.
  • 61999 DARPA intrusion detection evaluation data set [ DB / OL ] . [ 2007 - 04 - 09 ]. http://www. 11. mit. edu/IST/ideval/data/ 1999/1999_data_index. html.

同被引文献56

  • 1关健,刘大昕.基于主成分分析的无监督异常检测[J].计算机研究与发展,2004,41(9):1474-1480. 被引量:7
  • 2李伟男,鄂跃鹏,葛敬国,钱华林.多模式匹配算法及硬件实现[J].软件学报,2006,17(12):2403-2415. 被引量:42
  • 3Boyer R S, Moore J S. A fast string searching algorithm[J]. Communications of the ACM, 1977,20(10) :762-772.
  • 4Ibrahiem M M, Mohammed S M. A novel algorithm for solving the string matching problem[J]. International journal of computational Intelligence and applications, 2006,6 (4) : 499 - 510.
  • 5Knuth D E, Morris J H , Partt V R. Fast pattern matching in string[J]. SIAM journal on computing, 1997,6(2):323-350.
  • 6Muhittin Mungan. String matching and l d lattice gases[J]. Journal of statistical physics, 2007,126 (1): 207-242.
  • 7Sunday D M. A very fast substring search algorithm[J]. Communications of the ACM, 1990,33 (8) : 132-142.
  • 8Chen Gong, Wu Xindong. Efficient string matching with wildcards and length constraints[J]. Knowledge and information systems,2006,10(4): 399-419.
  • 9Wu S, Manber U. A Fast Algorithm for Multi-pattern Searching[R]. Department of Computer Science, University of Arizona, Technical Report: TR-94-17, 1994.
  • 10Aho A V, Corasick M J. Efficient String Matching: An Aid to Bibliographic Search[J]. Communications of the ACM, 1975, 18(6): 333-340.

引证文献8

二级引证文献16

计算机应用
2008年 第1期

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部