| Publisher | Fidelis Security Systems | ||
|---|---|---|---|
| Format | 247.6KB PDF | Date added | 22 Sep 2002 |
| Topics | Network Security, Security Tools, Intrusion Detection Systems | ||
| Downloads | 78 | ||
This paper developed an optimizing compiler for intrusion detection rules popularized by an open-source Snort Network Intrusion Detection System (www.snort.org). While Snort and Snort-like rules are usually thought of as a list of independent patterns to be tested in a sequential order, the paper demonstrates that common compilation techniques are directly applicable to Snort rule sets and are able to produce high-performance matching engines. SNORTRAN combines several compilation techniques, including cost-optimized decision trees, pattern matching precompilation, and string set clustering. Although all these techniques have been used before in other domain-specific languages, one believes their synthesis in SNORTRAN is original and unique.
Did you find this white paper useful?
3 out of 4 users found this white paper useful
Related white papers
MessageLabs Intelligence : 2009 security Predictions
Having analyzed the global threat landscape for almost a decade, MessageLabs Team Skeptic™ is comprised of many world-renowned malware and spam experts who have a global view of threats across...
Tangled Web : Undercover Threats, Invisible Enemies
MessageLabs offers integrated web and email security services proven to stay a step ahead of the bad guys. Its Web Security service, for example, includes anti-spyware and anti-virus protection, as...
Security & trust: the backbone of doing business over the internet
In e-commerce consumers are concerned about indentity theft. TNS research reported in 2006 70% of online shoppers have abandoned a purchase beacuase of security concerns. This white paper explores the...
IDC Vendor Spotlight
Organised ubiquity is a must for organisations to sucessfully "project" their users in any given landspace, at any given time, with secuirty policy. This White Paper covers issues surrounding secure...
Staying a step ahead of the hackers: the importance of identifying critical Web application vulnerabilities
Managers work to better manage the risks associated with their business infrastructure. Web application security plays a significant role in achieveing this goal. This white paper deals with issues surrounding...
Web application security: automated scanning versus manual penetration testing.
research has shown that a vast number of web sites are vunerable to application attacks, most occur over HTTP/S protocals. There are twom methods to detect web vunerablity . This...
Trend Micro Enterprise Security white paper
This white paper reviews the content security threat landscape and how it has evolved into a more dangerous and high risk environment. The paper discussed how conventional content security approaches...
