Design and Implementation of Network Intrusion Prevention System Based on High-Speed Network Processor

WENG Wen-xiang,QIU Wei-dong
DOI: https://doi.org/10.3969/j.issn.1009-8054.2009.04.035
2009-01-01
Abstract:Network Intrusion Detection and Prevention Systems are full of vitality in the fight against network intrusions.Network Intrusion Prevention System(NIPS)search for certain malicious content based on signatures and filter network traffic.Matching all traffic with these signatures is a challenge to high-speed networks.In this paper,the concept of network intrusion prevention system and its features are described.Then it introduces in detail the composition and structure of Intel High-Speed Network Processor is discussed,and analyzes the basic theory of IPS analyzed.Finally,the NIPS design and an implementation based on Intel High-Speed Network Processor is given.
What problem does this paper attempt to address?