Evaluation of the Huffman Encoding for Memory Optimization on Hardware Network Intrusion Detection

Eder Freire; Leizer Schnitman; Wagner Oliveira; Angelo Duarte

Evaluation of the Huffman Encoding for Memory Optimization on Hardware Network Intrusion Detection

Eder Freire UFBA
Leizer Schnitman UFBA
Wagner Oliveira UFBA
Angelo Duarte UEFS

Resumo

The design of specialized hardware for Network Intrusion Detection has been subject of intense research over the last decade due to its considerably higher performance compared to software implementations. In this context, one of the limiting factors is the finite amount of memory resources versus the increasing number of threat patterns to be analyzed. This paper proposes an architecture based on the Huffman algorithm for encoding, storage and decoding of these patterns in order to optimize such resources. We have made tests with simulation and synthesis in FPGA of rule subsets of the Snort software, and analysis indicate a saving of up to 73 percent of the embedded memory resources of the chip.

Palavras-chave: Encoding, Decoding, Hardware, Memory management, Intrusion detection, Software, network intrusion detection, FPGA, memory optimization, Huffman encoding

IEEE Xplore (English)

Publicado

04/11/2013

Como Citar

Selecione um Formato

FREIRE, Eder; SCHNITMAN, Leizer; OLIVEIRA, Wagner; DUARTE, Angelo. Evaluation of the Huffman Encoding for Memory Optimization on Hardware Network Intrusion Detection. In: SIMPÓSIO BRASILEIRO DE ENGENHARIA DE SISTEMAS COMPUTACIONAIS (SBESC), 3. , 2013, Niterói/RJ. Anais [...]. Porto Alegre: Sociedade Brasileira de Computação, 2013 . p. 131-136. ISSN 2237-5430.