BPF+: Exploiting Global Data-flow Optimization in a Generalized Packet Filter Architecture Logo

BPF+: Exploiting Global Data-flow Optimization in a Generalized Packet Filter Architecture

BPF+ is a generalized packet filter framework that achieves both high-level expressiveness and good performance for network monitoring and intrusion detection applications.

Network Security
Free
Visit website
1
0

BPF+: Exploiting Global Data-flow Optimization in a Generalized Packet Filter Architecture Description

BPF+ is a generalized packet filter framework that achieves both high-level expressiveness and good performance by compiling a high-level language into a highly efficient native implementation. It uses a novel optimization technique called "redundant predicate elimination" to minimize computation by exploiting semantic redundancies across multiple, independent filters. BPF+ derives from the BSD packet filter (BPF) and includes a filter program translator, a byte code optimizer, a byte code safety verifier, and a just-in-time assembler to convert byte codes to efficient native code. It provides a programmable selection criterion for classifying or selecting packets from a packet stream in a generic, reusable fashion, making it suitable for applications like network monitoring and intrusion detection that require both flexibility and high performance. BPF+ has been shown to achieve performance comparable to state-of-the-art packet filter architectures and better than hand-coded filters written in C.

FEATURED

Proton Pass Logo

Password manager with end-to-end encryption and identity protection features

NordVPN Logo

VPN service providing encrypted internet connections and privacy protection

Mandos Fractional CISO Services Logo

Fractional CISO services for B2B companies to accelerate sales and compliance

Stay Updated with Mandos Brief

Get the latest cybersecurity updates in your inbox

POPULAR

RoboShadow Logo

Automated vulnerability assessment and remediation platform

10
TestSavantAI Logo

Security platform that provides protection, monitoring and governance for enterprise generative AI applications and LLMs against various threats including prompt injection and data poisoning.

5
Cybersec Feeds Logo

A threat intelligence aggregation service that consolidates and summarizes security updates from multiple sources to provide comprehensive cybersecurity situational awareness.

5
Fabric Platform by BlackStork Logo

Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.

5
Mandos Brief Newsletter Logo

A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

5
View Popular Tools →