Decompression-free inspection: DPI for shared dictionary compression over HTTP

Anat Bremler-Barr*, Shimrit Tzur David, David Hay, Yaron Koral

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

Abstract

Deep Packet Inspection (DPI) is the most time and resource consuming procedure in contemporary security tools such as Network Intrusion Detection/Prevention System (NIDS/IPS), Web Application Firewall (WAF), or Content Filtering Proxy. DPI consists of inspecting both the packet header and payload and alerting when signatures of malicious software appear in the traffic. These signatures are identified through pattern matching algorithms.

Original languageEnglish
Title of host publication2012 Proceedings IEEE INFOCOM, INFOCOM 2012
Pages1987-1995
Number of pages9
DOIs
StatePublished - 2012
Externally publishedYes
EventIEEE Conference on Computer Communications, INFOCOM 2012 - Orlando, FL, United States
Duration: 25 Mar 201230 Mar 2012

Publication series

NameProceedings - IEEE INFOCOM
ISSN (Print)0743-166X

Conference

ConferenceIEEE Conference on Computer Communications, INFOCOM 2012
Country/TerritoryUnited States
CityOrlando, FL
Period25/03/1230/03/12

Fingerprint

Dive into the research topics of 'Decompression-free inspection: DPI for shared dictionary compression over HTTP'. Together they form a unique fingerprint.

Cite this