Abstract

A main function of network intrusion detection systems (NIDSs) is to monitor network traffic and match it against rules. Oblivious NIDSs (O-NIDS) perform the same tasks of NIDSs but they use encrypted rules and produce encrypted results without being able to decrypt the rules or the results. Current implementations of O-NIDS suffer from slow searching speeds and/or lack of generality. In this paper, we present a generic approach to implement a privacy-preserving O-NIDS based on hybrid binary gates. We also present two resource-flexible algorithm bundles built upon the hybrid binary gates to perform the NIDS’s essential tasks of direct matching and range matching as a proof of concept. Our approach utilizes a Homomorphic Encryption (HE) layer in an abstract fashion, which makes it implementable by many HE schemes compared to the state-of-the-art where the underlying HE scheme is a core part of the approach. This feature allowed the use of already-existing HE libraries that utilize parallelization techniques in GPUs for faster performance. We achieved a rule encryption time as low as 0.012% of the state of the art with only 0.047% of its encrypted rule size. Also, we achieved a rule-matching speed that is almost 20,000 times faster than the state of the art.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Design and Analysis of Real-time Network Intrusion Detection and Prevention System using Open Source Tools
Ammad Uddin ... Laiq Hasan
International Journal of Computer Applications | VOL. 138
Ammad Uddin, et. al.Ammad Uddin ... Laiq Hasan
17 Mar 2016
Network intrusion detection via machine learning
Yujia Cui ... Jinren Zhou
-
Yujia Cui, et. al.Yujia Cui ... Jinren Zhou
14 Dec 2021
Effect of Feature Selection, SMOTE and under Sampling on Class Imbalance Classification
Nadeem Qazi ... Kamran Raza
-
Nadeem Qazi, et. al.Nadeem Qazi ... Kamran Raza
01 Mar 2012
An effective network intrusion detection and classification system for securing WSN using VGG-19 and hybrid deep neural network techniques
P Manjula ... S Baghavathi Priya
Journal of Intelligent & Fuzzy Systems | VOL. 43
P Manjula, et. al.P Manjula ... S Baghavathi Priya
22 Sep 2022
View more papers

More From: Scientific Reports

Paper Title
Journal
Date
Author
Decoding of polar-coded OFDM systems over multipath fading channels with interleaving and channel state information
Mingbao Wu ... Zhian Zheng
Scientific Reports | VOL. 14
Mingbao Wu, et. al.Mingbao Wu ... Zhian Zheng
05 Dec 2024
Exploring musculoskeletal discomfort and school bag loads among Thai primary school students: a school-based cross-sectional survey
Jittaporn Mongkonkansai ... Chuchard Punsawad
Scientific Reports | VOL. 14
Jittaporn Mongkonkansai, et. al.Jittaporn Mongkonkansai ... Chuchard Punsawad
05 Dec 2024
Spatial analysis of femtosecond laser generated plasma using principal component analysis
James A Grant-Jacob ... Ben Mills
Scientific Reports | VOL. -
James A Grant-Jacob, et. al.James A Grant-Jacob ... Ben Mills
05 Dec 2024
Cytogenomic evaluation of regenerated Aralia elata using PLOP-FISH and flow cytometry
Eliazar Alumbro Peniton ... Hyun Hee Kim
Scientific Reports | VOL. 14
Eliazar Alumbro Peniton, et. al.Eliazar Alumbro Peniton ... Hyun Hee Kim
05 Dec 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.