NetMagic平台上正则表达式匹配技术实现

A Regular Expression Matching Technology Based on Net Magic Platform

下载PDF

导出

摘要在基于有限状态自动机的正则表达式匹配技术中,存储需求和匹配性能是一对相互制约的因素.统计分析发现,对于给定的自动机,状态的访问概率分布呈Zipf规律.为解决存储和性能的矛盾,设计并实现了基于Net Magic的两级存储的匹配引擎;根据状态的访问概率特性,将访问概率较高的状态配置在小容量的高速存储器中,访问概率较低的状态配置在大容量的低速存储器中,从而达到存储与性能的平衡.同时利用FPGA内部多RAM块特性,实例化多个匹配引擎,进一步使匹配速度线性提升.在资源充裕的条件下,理论上可达到65Gbps的吞吐量.实验表明单位存储代价大幅降低,但受限于Net Magic存储资源、频率及端口速率,实际性能为2.1Gbps. In the field of regular expression matching based on finite state machine,storage requirement and matching performance con- dition each other. Statistics shows that for a given automata,the access probabilities of states follow the Zipf distribution. To solve the contradiction between space and performance,this paper designs a matching engine with two-level memory on the basis of NetMagic platform, and the state transition table is deployed according to the access probabilities. The states with high access probabilities are stored in high-speed memory with small capacity, and states with low access probabilities are stored in low-speed memory with large capacity, thus achieving a balance between storage and performance. Furthermore, the multi-block RAM in FPGA is configured as multi-engine. As a result,the matching speed is accelerated multiple times. Under the condition of abundant resources,the throughput can reach 65 Gbps in theory. The result shows that,the storage cost reduces significantly. As limited by the storage resources, frequency and port rate of NetMagic, the actual performance is 2.1Gbps.

作者徐成成陈曙晖

机构地区国防科技大学计算机学院

出处《小型微型计算机系统》 CSCD 北大核心 2015年第2期280-284,共5页 Journal of Chinese Computer Systems

基金国家"八六三"高技术研究发展计划基金项目(2011AA01A103)资助

关键词正则表达式访问概率两级存储 NetMagic regular expression access probability two-level memory NetMagic

分类号 TP393 [自动化与计算机技术—计算机应用技术]

引文网络
相关文献

参考文献17

1L7 filterl EB/OL]. http://17-filter, sourceforge, net,2013.
2Snort [ EB/OL ]. http ://www. snort, org,2013.
3Bro Intrusion Detectopn system [ EB/OL ]. http ://broAds. org/Over- view. htm1,2013.
4Yu F, Chen Z, Diao Y, et al. Fast and memory-efficient regular ex- pression matching for deep packet inspection [ J ]. Architecture for Networking and Communications Systems, ANCS2006, ACM/IEEE Symposium on. IEEE,2006:93-102.
5张树壮,罗浩,方滨兴.面向网络安全的正则表达式匹配技术[J].软件学报,2011,22(8):1838-1854. 被引量：29
6Tran Trung Hieu, Tran Ngoc Thinh, ShiGenori Tomiyama. EN- REM:an efficient NFA-based regular expression matching engine on reconfigurable hardware for NIDS[ J]. Journal of Systems Archi- tecture,2013,59(4) :202-212.
7Hiroki Nakahara,Tsutomu Sasao, Munehiro Matsuura, A regular ex- pression matching circuit:decomposed non-deterministic realization with prefix sharing and multi-character transition [ J ]. Microproces- sors and Microsystems ,2012,36( 8 ) :644-664.
8Vasiliadis G, Polychronakis M, Ioannidis S. Midea: a multi-parallel intrusion detection architecture[C ]. Proceedings of the 18th ACM Conference on Computer and Communications Security, ser. CCS 11. New York,NY,USA:ACM,2011:297-308.
9Lin C H, Liu C H, Chang S C. Accelerating regular expression matching using hierarchical parallel machines on gpu [ C ]. IEEE Globecom 2011, Houston, Texas, USA, December,2011 : 1-5.
10Meiners C R, Patel J, Norige E, et al. Fast regular expression matc- hing using small tcams for network intrusion detection and preven- tion systems[ C]. Proceedings of the 19th USENIX Conference on Security, USENIX Association,2010.

二级参考文献18

1李伟男,鄂跃鹏,葛敬国,钱华林.多模式匹配算法及硬件实现[J].软件学报,2006,17(12):2403-2415. 被引量：42
2曹京,谭建龙,刘萍,郭莉.布尔表达式匹配问题研究[J].计算机应用研究,2007,24(9):70-72. 被引量：5
3Aho A V, Corasick M J. Efficient string matching: An aid to bibliographic search [J]. Communications of the ACM, 1975, 18(6): 333-340.
4Tuck N, Sherwood T, Calder B, et al. Deterministic memory efficient string matching algorithms for intrusion detection [C] //Proc of the IEEE INFOCOM 2004. Piscataway, NJ: IEEE Press, 2004:333-340.
5Fang Yu, Randy H Katz, Lakshman T V. Gigabit rate packet pattern-matching using TCAM[C] //Proc of the 12th IEEE Int'l Conf on Network Protocols (ICNP' 04). Washington: IEEE Computer Society, 2004.
6Application Layer Packet Classifier for Linux[OL]. [2007-02-14]. http://17-filter, sourceforge, net.
7IPP2P[OL]. [2007-02-14]. http://www, ipp2p, org.
8Snort. Network Intrusion Detection System[OL]. [2007-02- 14]. http://www, snort, org.
9Bro. Intrusion Detection System [ OL]. [ 2007-02-14 ]. http ://bro ids. org/Overview.
10Fang Yu, Zhifeng Chen, Yanlei Diao. Fast and memory-efficient regular expression matching for deep packet inspection, UCB/EECS-2006-76 [R/OL]. Berkeley: University of California, 2006. [2007-02-14]. http://www. eecs. berkeley, edu/Pubs/TechRpts/2006/EECS-2006-76, html.

共引文献41

1杨毅夫,刘燕兵,刘萍,郭牧怡,郭莉.正则表达式的DFA压缩算法[J].通信学报,2009,30(S1):36-42. 被引量：6
2姚远,刘鹏,单征,田双鹏.面向存储的正则表达式匹配算法综述[J].计算机应用,2009,29(12):3171-3173. 被引量：13
3姚振军,黄德根,纪翔宇.正则表达式在汉英对照中国文化术语抽取中应用[J].大连理工大学学报,2010,50(2):291-295. 被引量：9
4肖武德.一种正则表达式的高效分组算法[J].计算机安全,2010(4):57-59. 被引量：4
5姚远,刘鹏,王辉,笱程成.基于稀疏矩阵存储的状态表压缩算法[J].计算机应用,2010,30(8):2157-2160. 被引量：5
6张树壮,罗浩,方滨兴,云晓春.一种面向网络安全检测的高性能正则表达式匹配算法[J].计算机学报,2010,33(10):1976-1986. 被引量：27
7张树壮,罗浩,方滨兴.大规模复杂规则匹配技术研究[J].高技术通讯,2010,20(12):1217-1223. 被引量：3
8张树壮,罗浩,方滨兴.面向网络安全的正则表达式匹配技术[J].软件学报,2011,22(8):1838-1854. 被引量：29
9郑天明,王韬,郭世泽,李华,赵新杰.改进的空间协议识别算法[J].通信学报,2012,33(5):183-190. 被引量：6
10程元斌.正则表达式的动态集合扩展与实现[J].计算机系统应用,2012,21(10):201-203.

1王剑春.妥善管理布线系统[J].计算机网络世界,2007,16(11):35-36.
2郭霞.浅谈项目教学法在计算机专业教学中的应用[J].动动画世界（教育技术研究）,2012(8):50-50.
3陈厚仁,蔡延光.智慧城市停车场系统的研究与实现[J].工业控制计算机,2017,30(3):55-57. 被引量：4
4司广涛,李培峰,朱巧明,李军辉.一种基于最大熵模型的邮件过滤方法[J].计算机应用与软件,2008,25(1):70-72.
5朱德桥,李建国,郭佑民,张志.基于排队论的立体车库堆垛机效率分析[J].兰州交通大学学报,2009,28(3):62-64. 被引量：15
6最高速存储器[J].技术与市场,2009(2):73-73.
7CliffZitlaw.存储器件瞄准无线市场[J].今日电子,2002(9):32-33.
8邓明,王茂林,朱德鹏,党峰,李利杰.低速存储器与高速DSP处理器接口技术[J].石油仪器,2010,24(3):85-86.
9毛席龙,彭立宏,孙志刚,李韬.依托NetMagic平台推动计算机网络课程创新实践[J].计算机教育,2013(14):109-113. 被引量：2
10张衎.信息通信技术在服务行业的实际性运用[J].电子技术与软件工程,2016(22):38-38.

小型微型计算机系统

2015年第2期

浏览历史

内容加载中请稍等...

NetMagic平台上正则表达式匹配技术实现

参考文献17

二级参考文献18

共引文献41

相关作者

相关机构

相关主题

浏览历史