Skip to main content
OSTI.GOVU.S. Department of Energy Office of Scientific and Technical Information
U.S. Department of Energy
Office of Scientific and Technical Information
 

Integrated Scalable Parallel Firewall and Intrusion Detection System for High-Speed Networks

Technical Report ·
OSTI ID:963374
 [1];  [2];  [2]
  1. Wake Forest Univ., Winston-Salem, NC (United States); GreatWall Systems, Inc., Winston-Salem, NC (United States); GreatWall Systems, Inc., 635 West Fourth Street, Suite 200, Winston-Salem, NC 27101
  2. Wake Forest Univ., Winston-Salem, NC (United States); GreatWall Systems, Inc., Winston-Salem, NC (United States)
+ Show Author Affiliations

This project developed a new scalable network firewall and Intrusion Protection System (IPS) that can manage increasing traffic loads, higher network speeds, and strict Quality of Service (QoS) requirements. This new approach provides a strong foundation for next-generation network security technologies and products that address growing and unmet needs in the government and corporate sectors by delivering Optimal Network Security. Controlling access is an essential task for securing networks that are vital to private industry, government agencies, and the military. This access can be granted or denied based on the packet header or payload contents. For example, a simple network firewall enforces a security policy by inspecting and filtering the packet headers. As a complement to the firewall, an Intrusion Detection System (IDS) inspects the packet payload for known threat signatures; for example, virus or worm. Similar to a firewall policy, IDS policies consist of multiple rules that specify an action for matching packets. Each rule can specify different items, such as the signature contents and the signature location within the payload. When the firewall and IDS are merged into one device, the resulting system is referred to as an Intrusion Protection System (IPS), which provides both packet header and payload inspections. Having both types of inspections is very desirable and more manageable in a single device.

Research Organization:
GreatWall Systems, Inc., Winston-Salem, NC (United States)
Sponsoring Organization:
USDOE Office of Energy Research (ER); USDOE Chicago Operations Office (CO); USDOE Office of Science (SC)
DOE Contract Number:
FG02-06ER86274
OSTI ID:
963374
Report Number(s):
DOE-ER--86274
Country of Publication:
United States
Language:
English

Similar Records

Firewall Architectures for High-Speed Networks: Final Report
Technical Report · Mon Aug 20 00:00:00 EDT 2007 · OSTI ID:924750
Networked-based Cyber Analysis using Deep Packet Inspection (DPI) for High-Speed Networks
Technical Report · Fri Nov 01 00:00:00 EDT 2019 · OSTI ID:1863848
High-end Home Firewalls CIAC-2326
Technical Report · Wed Oct 08 00:00:00 EDT 2003 · OSTI ID:15013800

Related Subjects

97 MATHEMATICS AND COMPUTING
Highly-Scalable Firewall
Intrusion Detection
Intrusion Prevention