论文信息 - Design and implementation of an anomaly-based network intrusion detection system utilizing the DNA model

Design and implementation of an anomaly-based network intrusion detection system utilizing the DNA model

The genetic material that encodes the unique characteristics of each individual such as gender, eye color, and other human features is the well-known DNA. In this work, we introduce an anomaly intrusion detection system, built on the notion of a DNA sequence or gene, which is responsible for the normal network traffic patterns. Subsequently, the system detects suspicious activities by searching the "normal behavior DNA sequence" through string matching. On the other hand, string matching is a computationally intensive task and can be converted into a potential bottleneck without high-speed processing. Furthermore, conventional software-implemented string matching algorithms have not kept pace with the ever increasing network speeds. As a result, we adopt a monitoring phase that is hardware-implemented with the intention that DNA pattern matching is performed at wire-speed. Finally, we provide the details of our FPGA implementation of the bioinformatics-based string matching technique.

Magdy Saeb | Riham Mahdy

[1] Viktor K. Prasanna,et al. Time and area efficient pattern matching on FPGAs , 2004, FPGA '04.

[2] G. Nilsen,et al. A variable word-width content addressable memory for fast string matching , 2004, Proceedings Norchip Conference, 2004..

[3] John A. Chandy,et al. FPGA based network intrusion detection using content addressable memories , 2004, 12th Annual IEEE Symposium on Field-Programmable Custom Computing Machines.

[4] Debin Gao,et al. Behavioral Distance for Intrusion Detection , 2005, RAID.

[5] Philip K. Chan,et al. PHAD: packet header anomaly detection for identifying hostile network traffic , 2001 .

[6] Richard Lippmann,et al. The 1999 DARPA off-line intrusion detection evaluation , 2000, Comput. Networks.

[7] Boleslaw K. Szymanski,et al. Intrusion detection: a bioinformatics approach , 2003, 19th Annual Computer Security Applications Conference, 2003. Proceedings..

[8] John H. Reif,et al. DNA-based Cryptography , 1999, Aspects of Molecular Computing.

[9] Kristopher Kendall,et al. A Database of Computer Attacks for the Evaluation of Intrusion Detection Systems , 1999 .

[10] Peter J. Bentley,et al. The Human Immune System and Network Intrusion Detection , 1999 .