|
|
Type of Document Master's Thesis Author Wheeler, Kyle Bruce URN etd-04122005-140043 Title Load Balancing for High Speed Parallel Network Intrusion Detection Degree Master of Science in Computer Science and Engineering Department Computer Science and Engineering Advisory Committee
Advisor Name Title Aaron Striegel Committee Member Doug Thain Committee Member Keywords
- packet loss
- feedback
- dynamic
- hash
- FPGA
Date of Defense 2005-03-31 Availability unrestricted Abstract Network intrusion detection systems (NIDS) are deployed near network gateways to analyze all traffic entering or leaving the network. The traffic at such locations is frequently transmitted in such volumes and speeds that a commodity computer quickly becomes overwhelmed. NIDS must be able to handle all of the traffic available. The SPANIDS platformaddresses this problem with a custom hardware load balancer that spreads traffic over several NIDS sensors. The load balancer ensures that sensors do not become overloaded by shifting traffic between sensors while maintaining network flow continuity when possible. The balancer must be resistant to attacks designed to overwhelm it. This work outlines the design of the SPANIDS load balancer and evaluates its performance using simulation. Several design points are examined, including overload detection, locating overload causes, and several overload avoidance techniques. The simulation results confirm the viability of the SPANIDS architecture for scalable parallel network intrusion detection.Files
Filename Size Approximate Download Time (Hours:Minutes:Seconds)
28.8 Modem 56K Modem ISDN (64 Kb) ISDN (128 Kb) Higher-speed Access WheelerKB052005.pdf 5.61 Mb 00:25:58 00:13:21 00:11:41 00:05:50 00:00:29