[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[AG-TECH] LANL Seminar Series - Regular Expression Software Deceleration for Intrusion Detection Systems

To: ag-tech@xxxxxxxxxxx, ag-users@xxxxxxxxxxx, ag-event-announce@xxxxxxxxxxx
Subject: [AG-TECH] LANL Seminar Series - Regular Expression Software Deceleration for Intrusion Detection Systems
From: Cindy Sievers <sievers@xxxxxxxx>
Date: Wed, 16 Aug 2006 12:13:25 -0600
Sender: owner-ag-tech@xxxxxxxxxxx

LANL Seminar series - Regular Expression Software Deceleration for Intrusion Detection Systems

DATE: Thursday, August 17 TIME: 2:00pm Mountain Time VENUE: Walkabout (off the NCSA venue server) All remote sites welcome! Please arrive in the venue at least 1/2 hour early for testing and VNC information. Meeting details: http://agschedule.ncsa.uiuc.edu/meetingdetails.asp?MID=16731

SPEAKER:
Zachary K. Baker, LANL, CCS-1

ABSTRACT:
The use of reconfigurable hardware for network security applications
has recently made great strides as FPGA devices have provided larger
and faster resources.  Regular expressions have become a necessary and
basic capability of Intrusion Detection Systems, but their
implementation tends to be expensive in terms of memory cost and time
performance. This work provides an architecture that reduces the
exponential NFA to DFA conversion cost to a linear growth for many
expressions.


By handling the timing and integration of the regular expression-based
rules in a custom microcontroller, the memory costs are reduced and
the capabilities are increased over a DFA-only solution.  Both the
microcontroller and its associated DFA are implemented on the FPGA.
The patterns and software are stored using run-time programmable
memory tables.  This allows on-the-fly modification to the regular
expressions.


This talk will present the design details of the regular expression
microcontroller and its integration to the DFA state machines. The
types of expressions that the system can handle efficiently will be
discussed as well as the outstanding problems that continue to
challenge the community.


For more information or to RSVP , please contact sievers@xxxxxxxx

============================================
Cindy Sievers           Los Alamos National Laboratory
sievers@xxxxxxxx        Group CCS-1 MS B287
tel:505.665.6602        Advanced Computing
fax:505.665.4939        Los Alamos, NM 87544
============================================

Prev by Date: Re: [AG-TECH] cannot connect after installing new certificate
Next by Date: [AG-TECH] PIG Won't start
Previous by thread: Re: [AG-TECH] cannot connect after installing new certificate
Next by thread: [AG-TECH] PIG Won't start
Index(es):
- Date
- Thread