Article: Multiprocessing scalable string matching algorithm for network intrusion detection system Journal: International Journal of High Performance Systems Architecture (IJHPSA) 2018 Vol.8 No.3 pp.159 - 168 Abstract: With high increasing speed of today's computer networks which affects the performance of security issues in terms of detection speed, the traditional security tools such as firewall is insufficient to protect the networks from external threads. Intrusion detection systems (IDS) are one of the most reliable tools that can be used to monitor all the network traffic to identify unauthorised usage of computer system networks. In this paper, we have proposed a scalable string matching algorithm based on network IDS (NIDS) to enhance the speed of NIDS detection engine, which called multiprocessing scalable string matching algorithm for network intrusion detection system (MSNIDS). The MSNIDS implemented by using enhanced weighted exact matching algorithm (EWEMA) in both sequential and parallel processing. The MSNIDS based on EWEMA can be achieved more than 89% in sequential processing time compared with WEMA, and 86% in parallel processing time compared with sequential matching processing. Inderscience Publishers - linking academia, business and industry through research

Title: Multiprocessing scalable string matching algorithm for network intrusion detection system

Authors: Adnan A. Hnaif; Ali Aldahoud; Mohammad A. Alia; Issa S. Al'otoum; Duaa Nazzal

Addresses: Faculty of Science and Information Technology, Al Zaytoonah University of Jordan, P.O. Box 130 Amman, 11733, Jordan ' Faculty of Science and Information Technology, Al Zaytoonah University of Jordan, P.O. Box 130 Amman, 11733, Jordan ' Faculty of Science and Information Technology, Al Zaytoonah University of Jordan, P.O. Box 130 Amman, 11733, Jordan ' Faculty of Science and Information Technology, Al Zaytoonah University of Jordan, P.O. Box 130 Amman, 11733, Jordan ' Faculty of Science and Information Technology, Al Zaytoonah University of Jordan, P.O. Box 130 Amman, 11733, Jordan

Abstract: With high increasing speed of today's computer networks which affects the performance of security issues in terms of detection speed, the traditional security tools such as firewall is insufficient to protect the networks from external threads. Intrusion detection systems (IDS) are one of the most reliable tools that can be used to monitor all the network traffic to identify unauthorised usage of computer system networks. In this paper, we have proposed a scalable string matching algorithm based on network IDS (NIDS) to enhance the speed of NIDS detection engine, which called multiprocessing scalable string matching algorithm for network intrusion detection system (MSNIDS). The MSNIDS implemented by using enhanced weighted exact matching algorithm (EWEMA) in both sequential and parallel processing. The MSNIDS based on EWEMA can be achieved more than 89% in sequential processing time compared with WEMA, and 86% in parallel processing time compared with sequential matching processing.

Keywords: string matching algorithms; distributed architecture; parallel processing; network intrusion detection system; NIDS.

DOI: 10.1504/IJHPSA.2018.100715

International Journal of High Performance Systems Architecture, 2018 Vol.8 No.3, pp.159 - 168

Accepted: 23 Nov 2018
Published online: 16 Jul 2019 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article

Title: Multiprocessing scalable string matching algorithm for network intrusion detection system

Keep up-to-date