By Topic

Towards System-level Optimization for High Performance Unified Threat Management

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Formats Non-Member Member
$31 $13
Learn how you can qualify for the best price for this item!
Become an IEEE Member or Subscribe to
IEEE Xplore for exclusive pricing!
close button

puzzle piece

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

4 Author(s)
Yaxuan Qi ; Tsinghua Univ., Beijing ; Baohua Yang ; Bo Xu ; Jun Li

To build holistic protection against complex and blended network threats, multiple security features need to be integrated into unified security architecture, which requires in a unified threat management (UTM). However, most existing UTMs operate by simply stringing together a number of security applications working independently without system level optimization that streamlines processing flow and leverages shared information and resources to reach high performance. In this paper, a generic framework is proposed to optimize the performance of UTMs at both algorithmic and architectural aspects by exploring the idea of integrated protocol processing (IPP). The algorithm proposed in this paper improves overall protocol processing complexity of ACL and IDS from Theta(log(M) + log(N)) to Theta(log(M +N)) . Experiments on Intel IXP2850 network processor show that our scheme outperforms existing solutions with 30% increase of throughput.

Published in:

Networking and Services, 2007. ICNS. Third International Conference on

Date of Conference:

19-25 June 2007