网络入侵检测系统中最新的DFA压缩方法对数据包进行深度检测

Advances in Systems Analysis, Software Engineering, and High Performance Computing Pub Date : 1900-01-01 DOI:10.4018/978-1-7998-6721-0.ch010

Vinoth Kumar K

{"title":"网络入侵检测系统中最新的DFA压缩方法对数据包进行深度检测","authors":"Vinoth Kumar K","doi":"10.4018/978-1-7998-6721-0.ch010","DOIUrl":null,"url":null,"abstract":"The vast majority of the system security applications in today's systems depend on deep packet inspection. In recent years, regular expression matching was used as an important operator. It examines whether or not the packet's payload can be matched with a group of predefined regular expressions. Regular expressions are parsed using the deterministic finite automata representations. Conversely, to represent regular expression sets as DFA, the system needs a large amount of memory, an excessive amount of time, and an excessive amount of per flow state, limiting their practical applications. This chapter explores network intrusion detection systems.","PeriodicalId":173264,"journal":{"name":"Advances in Systems Analysis, Software Engineering, and High Performance Computing","volume":"36 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"1900-01-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Network Intrusion Detection System in Latest DFA Compression Methods for Deep Packet Scruting\",\"authors\":\"Vinoth Kumar K\",\"doi\":\"10.4018/978-1-7998-6721-0.ch010\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The vast majority of the system security applications in today's systems depend on deep packet inspection. In recent years, regular expression matching was used as an important operator. It examines whether or not the packet's payload can be matched with a group of predefined regular expressions. Regular expressions are parsed using the deterministic finite automata representations. Conversely, to represent regular expression sets as DFA, the system needs a large amount of memory, an excessive amount of time, and an excessive amount of per flow state, limiting their practical applications. This chapter explores network intrusion detection systems.\",\"PeriodicalId\":173264,\"journal\":{\"name\":\"Advances in Systems Analysis, Software Engineering, and High Performance Computing\",\"volume\":\"36 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"1900-01-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Advances in Systems Analysis, Software Engineering, and High Performance Computing\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.4018/978-1-7998-6721-0.ch010\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Advances in Systems Analysis, Software Engineering, and High Performance Computing","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.4018/978-1-7998-6721-0.ch010","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

摘要

在当今的系统中，绝大多数系统安全应用都依赖于深度包检测。近年来，正则表达式匹配被用作一种重要的运算符。它检查数据包的有效负载是否可以与一组预定义的正则表达式匹配。正则表达式使用确定性有限自动机表示进行解析。相反，为了将正则表达式集表示为DFA，系统需要大量的内存、过多的时间和过多的每个流状态，从而限制了它们的实际应用。本章探讨网络入侵检测系统。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Network Intrusion Detection System in Latest DFA Compression Methods for Deep Packet Scruting

The vast majority of the system security applications in today's systems depend on deep packet inspection. In recent years, regular expression matching was used as an important operator. It examines whether or not the packet's payload can be matched with a group of predefined regular expressions. Regular expressions are parsed using the deterministic finite automata representations. Conversely, to represent regular expression sets as DFA, the system needs a large amount of memory, an excessive amount of time, and an excessive amount of per flow state, limiting their practical applications. This chapter explores network intrusion detection systems.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Advances in Systems Analysis, Software Engineering, and High Performance Computing

自引率

0.00%

发文量