High-Speed Pattern Matching Algorithm using TCAM 


Vol. 12,  No. 4, pp. 503-510, Aug.  2005
10.3745/KIPSTC.2005.12.4.503


PDF
  Abstract

With the increasing importance of network protection from cyber threats, it is requested to develop a multi-gigabit rate pattern matching method for protecting against malicious attacks in high-speed network. This paper devises a high-speed pattern matching algorithm with TCAM by using an m-byte jumping window pattern matching scheme. The proposed algorithm significantly reduces the number of TCAM lookups per payload by m times with the marginally enlarged TCAM size which can be implemented by cascading multiple TCAMs. Due to the reduced number of TCAM lookups, we can easily achieve multi-gigabit rate for scanning the packet payload. It is shown by simulation that for the Snort rule with 2,247 patterns, our proposed algorithm supports more than 10 Gbps rate with a 9Mbit TCAM.

  Statistics
  Cite this article

[IEEE Style]

J. S. Sung, S. M. Kang, Y. S. Lee, T. G. Kwon, B. T. Kim, "High-Speed Pattern Matching Algorithm using TCAM," The KIPS Transactions:PartC, vol. 12, no. 4, pp. 503-510, 2005. DOI: 10.3745/KIPSTC.2005.12.4.503.

[ACM Style]

Jung Sik Sung, Seok Min Kang, Young Seok Lee, Taeck Geun Kwon, and Bong Tae Kim. 2005. High-Speed Pattern Matching Algorithm using TCAM. The KIPS Transactions:PartC, 12, 4, (2005), 503-510. DOI: 10.3745/KIPSTC.2005.12.4.503.

Forms

Search
(IN TITLE, AUTHOR, ABSTRACT,KEYWORDS)

Advanced Search

POPULAR KEYWORDS
(TOP 10 KEYWORDS)

Recent Publications
(LAST 3 YEARS)

Old Journals

Indexing

All publications of TKIPS is indexed in DOI, EBSCO, Google Scholar, Crossref, and CrossCheck.

TKIPS is also selected as the Journal for Accreditation by NRF (National Research Foundation of Korea).

Related Journals