| DC 欄位 |
值 |
語言 |
| DC.contributor | 資訊管理學系 | zh_TW |
| DC.creator | 朱彥豪 | zh_TW |
| DC.creator | Yan-Hao Chu | en_US |
| dc.date.accessioned | 2010-7-21T07:39:07Z | |
| dc.date.available | 2010-7-21T07:39:07Z | |
| dc.date.issued | 2010 | |
| dc.identifier.uri | http://ir.lib.ncu.edu.tw:444/thesis/view_etd.asp?URN=974203046 | |
| dc.contributor.department | 資訊管理學系 | zh_TW |
| DC.description | 國立中央大學 | zh_TW |
| DC.description | National Central University | en_US |
| dc.description.abstract | 隨著網際網路的蓬勃發展,在網路上的應用也日益增多,相對的網路安全問題也隨著網路的普及越來越受到重視,基於特徵比對之網路型入侵偵測系統便成為不可或缺的基礎防護。然而目前網路型入侵偵測系統大多實作於軟體之上,相對於網路進入高速傳輸的今日已不敷使用,且酬載內容比對相較於標頭比對需要較多的計算量,也成為軟體比對的瓶頸。本研究以史丹佛大學與Xilinx合作開發的NetFPGA平台設計網路惡意封包偵測器以達到快速比對效果,雖然在FPGA上設計之IC具有快速、平行比對、與快速雛型化之特性,但該平台所能使用的資源有限,而特徵資料庫需要不斷的更新以達到比對成效,故本研究以決策樹檢測封包之標頭節省電路資源消耗,再依標頭比對之架構建置多字串比對群組來進行封包酬載之比對,並且在每個字串群組以布隆過濾器濾掉沒有惡意嫌疑的酬載內容,並以改良式Karp-Rabin演算法降低布隆過濾器存有之誤報率且達到多比對之效果,本研究經由實驗證明此設計的確可以較少的資源利用達到快速且有效之比對結果。
| zh_TW |
| dc.description.abstract | Also day by day increases along with Internet’’s rapid development in network’’s application, the relative network security problem also more and more receives along with network’’s popularization takes seriously, compared to then becomes the indispensable foundation protection based on the characteristic to it network intrusion detector. However present network intrusion detector is mostly solid does above the software, is opposite enters high speed transmission in the network today to use insufficiently, and the payload content need more computation loads, it also becomes the software compares to the bottleneck. This research using FPGA platform design network intrusion detector achieves by the Standford University and Xilinx cooperate development’’s NetFPGA fast compared to the effect, although IC of design has fast on FPGA , but this platform can use the resources are limited, therefore this research saves the resources consumption by decision tree examine header, depends on it to establish the multi-strings group again to it construction to carry on ratio of the payload to the group to be more right than, and filters out the payload in each string groups by the Bloom Filter which does not have suspicion, and the improvement Karp-Rabin Algorithm calculating method reduces the Bloom Filter to have the rate of false alarm, and achieves multi-matching to it effect, this research by way of the experiment proved that this design indeed may the few resources use achieve fast and the effective ratio to the result.
| en_US |
| DC.subject | NetFPGA | zh_TW |
| DC.subject | 布隆過濾器 | zh_TW |
| DC.subject | 入侵偵測系統 | zh_TW |
| DC.subject | 改良式Karp-Rabin演算法 | zh_TW |
| DC.subject | Intrusion Detection | en_US |
| DC.subject | NetFPGA | en_US |
| DC.subject | Modified Karp Rabin Algorithm | en_US |
| DC.subject | Bloom Filter | en_US |
| DC.title | 以NetFPGA實作結合布隆過濾器與改良式Karp Rabin演算法之網路惡意封包偵測器 | zh_TW |
| dc.language.iso | zh-TW | zh-TW |
| DC.title | Using NetFPGA to Implement Bloom Filter And Modified Karp Rabin Algorithm Based Network Intrusion Detector | en_US |
| DC.type | 博碩士論文 | zh_TW |
| DC.type | thesis | en_US |
| DC.publisher | National Central University | en_US |