%0 Journal Article %1 mastani2014reduced %A Mastani, Dr.S.Aruna %D 2014 %E Hope, Dr.Martin %J Int. J. on Recent Trends in Engineering and Technology, %K AC_ Aho–Corasick_ algorithm %N 2 %P 6 %T Reduced Merge_FSM Pattern Matching Algorithm for Network Intrusion Detection %U http://searchdl.org/public/journals/2014/IJRTET/10/2/522.pdf %V 10 %X Pattern matching is a significant issue in intrusion detection systems (IDS), as it is required to identify and restrict certain virus patterns by matching them with the patterns present in the database. The performance of an Intrusion Detection System is dependent on two metrics that is throughput and the total number of patterns that can fit on a device. Many hardware approaches are proposed to accelerate pattern matching. Among hardware approaches, memory based architecture has attracted a lot of attention because of its easy reconfiguration and scalability. In memory architecture approach. First, the virus string patterns are compiled to a finite-state machine (FSM) whose output is asserted when any substring of input strings matches the string patterns. The speed of comparisons and memory required to store virus string patterns is evaluated through the number of state transitions made. In this paper, a new pattern-matching algorithm ‘Reduced Merge_FSM’ is proposed which significantly reduce the memory requirement and provides faster matching, by reducing the state transitions, than that of existing Finite State Machine (FSM) based approaches. This reduction in states results in optimization of memory and also the comparison time. To prove the efficiency of the proposed algorithm, it is compared through experimentation with the existing AC-Algorithm and Merge_FSM.

@article{mastani2014reduced, abstract = {Pattern matching is a significant issue in intrusion detection systems (IDS), as it is required to identify and restrict certain virus patterns by matching them with the patterns present in the database. The performance of an Intrusion Detection System is dependent on two metrics that is throughput and the total number of patterns that can fit on a device. Many hardware approaches are proposed to accelerate pattern matching. Among hardware approaches, memory based architecture has attracted a lot of attention because of its easy reconfiguration and scalability. In memory architecture approach. First, the virus string patterns are compiled to a finite-state machine (FSM) whose output is asserted when any substring of input strings matches the string patterns. The speed of comparisons and memory required to store virus string patterns is evaluated through the number of state transitions made. In this paper, a new pattern-matching algorithm ‘Reduced Merge_FSM’ is proposed which significantly reduce the memory requirement and provides faster matching, by reducing the state transitions, than that of existing Finite State Machine (FSM) based approaches. This reduction in states results in optimization of memory and also the comparison time. To prove the efficiency of the proposed algorithm, it is compared through experimentation with the existing AC-Algorithm and Merge_FSM.}, added-at = {2014-02-01T11:04:50.000+0100}, author = {Mastani, Dr.S.Aruna}, biburl = {https://www.bibsonomy.org/bibtex/238a0421b28704857baf5f7c486c783bc/idescitation}, editor = {Hope, Dr.Martin}, interhash = {9635e9a72fe0fab87ddbd9804b18cbba}, intrahash = {38a0421b28704857baf5f7c486c783bc}, journal = {Int. J. on Recent Trends in Engineering and Technology,}, keywords = {AC_ Aho–Corasick_ algorithm}, month = {January}, number = 2, pages = 6, timestamp = {2014-02-01T11:04:50.000+0100}, title = {Reduced Merge_FSM Pattern Matching Algorithm for Network Intrusion Detection}, url = {http://searchdl.org/public/journals/2014/IJRTET/10/2/522.pdf}, volume = 10, year = 2014 }