NYU-Poly Researchers Find a New Way to Intercept Malware, Viruses at Router Level

Imagine scanning a document in search of a specific word or phrase, knowing that missing even a single letter could have disastrous consequences. Now imagine that the document is rescanned a million times every second.

Such is the task facing Internet Service Providers (ISPs) as they employ Deep Packet Inspection (DPI) — a cybersecurity tactic aimed at intercepting malicious traffic and preventing viruses from entering a network.  H. Jonathan Chao, who heads the Department of Electrical and Computer Engineering at the Polytechnic Institute of New York University (NYU-Poly), and Industry Assistant Professor N. Sertac Artan have developed and patented a hardware solution to revolutionize this increasingly critical cybersecurity function.

The approach offers considerable security advantages to consumers, explains Chao. "Our invention helps intercept viruses and malware at the earliest possible instance — before they even reach users' computers — keeping networks running and protecting individual users," he said.

Effective DPI examines every packet entering a router switch. Its contents are compared against an ever-growing catalogue of known viruses or attack signatures. With millions of packets arriving each second, the process is often accomplished by a network of processors running parallel searches on portions of data packets — an approach that doesn't scale well to high-speed traffic. Chao and Artan devised a scheme for consolidating the inspection process to a single node, compressing the catalogue of attack signatures to fit on one chip. This allows service providers to streamline their DPI strategy, using fewer resources without compromising efficacy or speed. 

With a prototype already developed, Chao and Artan are testing their solution with the goal of licensing the technology.

Chao also notes that as cybersecurity threats become more complex and wide-reaching, the security community has focused on hardware solutions to meet the high-speed detection required of today's enterprise and core networks. Earlier this year, NYU-Poly joined with three other top cybersecurity research institutions and the National Science Foundation to establish Trust Hub, a web-based repository and exchange network for security researchers and practitioners. The site will allow the hardware security community to exchange papers, benchmarks, hardware platforms, source codes and tools.

Over the course of ten months, Chao and his collaborators have obtained a total of nine patents for technologies that increase the efficiency and safety of high-speed networks. His Deep Packet Inspection solution was developed with support from the National Science Foundation and NYU-Poly's Center for Advanced Technology in Telecommunications.

Featured

  • Using Modern Technology

    Using Modern Technology

    Workplace violence is a serious and growing challenge for many organizations — including those in the healthcare industry. Read Now

  • The Core Value Proposition

    The Core Value Proposition

    Machine and deep learning algorithms are everywhere in our lives. Masquerading as AI, they are only in their infancy. Have a conversation with a ChatGPT chatbot, and it becomes clear just how far we have come in a short time and how far we have to go. Read Now

  • Progressing in Capabilities

    Progressing in Capabilities

    Hazardous areas within industries like oil and gas, manufacturing, agriculture and the like, have long-sought reliable video surveillance cameras and equipment that can operate safely in these harsh and unpredictable environments. Read Now

  • A Comprehensive Nationwide Solution

    A Comprehensive Nationwide Solution

    Across the United States, manufacturing facilities, distribution centers, truck yards, parking lots and car dealerships all have a common concern. They are targets for catalytic converters. In nearly every region, cases of catalytic converter thefts have skyrocketed. Read Now

Featured Cybersecurity

New Products

  • QCS7230 System-on-Chip (SoC)

    QCS7230 System-on-Chip (SoC)

    The latest Qualcomm® Vision Intelligence Platform offers next-generation smart camera IoT solutions to improve safety and security across enterprises, cities and spaces. The Vision Intelligence Platform was expanded in March 2022 with the introduction of the QCS7230 System-on-Chip (SoC), which delivers superior artificial intelligence (AI) inferencing at the edge. 3

  • Dahua 2-Wire IP Video Intercom System

    Dahua 2-Wire IP Video Intercom System

    Dahua Technology is introducing a new line of expandable 2-wire IP video intercom solutions for the North America market. The New 2-wire IP video intercom is more advanced, cost effective, and designed to help businesses increase their security. 3

  • D-Tools System Integrator (SI) Software

    D-Tools System Integrator (SI) Software

    D-Tools Inc. has announced the availability of System Integrator version 16, which adds powerful new project and service management capabilities to its award-winning, end-to-end business management solution. 3