Internet Worm and Virus Protection for Very High-Speed Networks

Abstract

The security of the Internet can be improved using reconfigurable hardware. A platform has been implemented that actively scans and filters Internet traffic at multi-Gigabit/second rates using reconfigurable hardware. Modular components implemented in FPGA logic process packet headers and scan for signatures of malicious software (malware) carried in packet payloads. Additional FPGA circuits track the state of Transmission Control Protocol (TCP) flows. Regular Expressions and fixed-string scanning circuits are implemented in parallel hardware. Dynamic reconfiguration enables remote modules to be reconfigured to scan for new signatures. Networkwide protection is achieved by the deployment of multiple systems throughout the Internet.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Aug 20, 2004
Accession Number
ADA428312

Entities

People

  • John Lockwood

Organizations

  • Washington University in St. Louis

Tags

Communities of Interest

  • Advanced Electronics
  • Cyber

DTIC Thesaurus Topics

  • Computer Network Security
  • Computer Networks
  • Computer Science
  • Computer Viruses
  • Computers
  • Detection
  • Field Programmable Gate Arrays
  • Intellectual Property
  • Internet
  • Intrusion Detection
  • Intrusion Detectors
  • Malware
  • Network Protocols
  • Networks
  • Operating Systems
  • Software-Defined Hardware
  • Web Browsers

Fields of Study

  • Computer science

Readers

  • Computer Networking
  • Computer Science/Computer Engineering/Data Science/Digital Signal Processing.
  • Distributed Systems and Data Platform Development

Technology Areas

  • Cyber