Systolic Array for String Matching in NIDS

T.N. Thinh and S. Kittitornkun (Thailand)


Compact Encoding, Systolic Array, String Matching, NIDS, FPGA


In this paper, the rule set of a Network Intrusion Detec tion System, SNORT [1], is deeply analyzed and a com pact encoding method to reduce the memory space for storing the payload content strings of entire rules is pro posed. This method can approximately reduce up to 50% of area cost when compared with traditional ASCII coding method. After that, we implement a reconfigurable hard ware sub-system for Snort payload matching using systolic design technique. Our system is a processor array architec ture that can match strings with throughput up to 3.86 Gbps and area efficient manner.

Important Links:

Go Back