Applying an Efficient Searching Algorithm for Intrusion Detection on Ubicom Network Processor
Intrusion Detection Systems (IDSs) have become widely recognized as powerful tools for identifying, deterring and deflecting malicious attacks over the network. Essential to almost every intrusion detection system is the ability to search through packets and identify content that matches known attacks. In this paper, common searching algorithms (string matching, Native, Boyer Moore and pattern matching algorithms) are examined on Ubicom Network Processor which is intended to be used as Network Intrusion Detection System (NIDS). Afterword, the suitable algorithm for Ubicom network processor is chosen which combine string matching and Native algorithms because these algorithms don't have any type of preprocessing as Ubicom network processor doesn't contain Micro Engine (ME) and doesn't support multithreading which are used to speed the operation of preprocessing.