发明名称 |
Two-stage intrusion detection system for high-speed packet processing using network processor and method thereof |
摘要 |
A system and method for detecting network intrusion by using a network processor are provided. The intrusion detection system includes: a first intrusion detector, configured to use a first network processor to perform intrusion detection on layer 3 and layer 4 of a protocol field among information included in a packet header of a packet transmitted to the intrusion detection system, and when no intrusion is detected, classify the packets according to stream and transmit the classified packets to a second intrusion detector; and a second intrusion detector, configured to use a second network processor to perform intrusion detection through deep packet inspection (DPI) for the packet payload of the packets transmitted from the first intrusion detector. Thereby, intrusion detection for high-speed packets can be performed in a network environment. |
申请公布号 |
US8732833(B2) |
申请公布日期 |
2014.05.20 |
申请号 |
US201213452894 |
申请日期 |
2012.04.22 |
申请人 |
CHOI YOUNG-HAN;KIM DEOK-JIN;LEE SUNG-RYOUL;LEE MAN-HEE;BAE BYUNG-CHUL;PARK SANG-WOO;YOON E-JOONG;ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE |
发明人 |
CHOI YOUNG-HAN;KIM DEOK-JIN;LEE SUNG-RYOUL;LEE MAN-HEE;BAE BYUNG-CHUL;PARK SANG-WOO;YOON E-JOONG |
分类号 |
G06F11/00;G06F12/14;G06F12/16;G08B23/00 |
主分类号 |
G06F11/00 |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
|