Oblivious Intrusion Detection System

Abstract

Intrusion Detection Systems (IDSs) are capable of monitoring network traffic and matching it against rules. Obliv-ious IDSs perform the same tasks of IDSs while using encrypted rules and producing encrypted results without being able to decrypt the rules or the results. Current implementations to this technology suffer from slow searching speeds and/or lack of generality. In this paper we present a generic approach to implement privacy-preserving intrusion detection system based on hybrid binary gates along with an application algorithm for hybrid text matching. Benchmarking showed a wide variety of trade-offs with minimum searching time of 897 msecs for 1-byte encrypted rule through 10- bytes plaintext.