Software Architecture

Figure 1 shows the Intelligent Data Analytics software architecture.

Figure 1 Intelligent Data Analytics software architecture

• Suricata is a network traffic analysis tool that supports multi-thread traffic detection and identifies potential malicious traffic based on preset rules.
• Hyperscan is a high-performance regular expression matching engine. It is usually integrated into tools such as Suricata to accelerate the matching of complex patterns.
• The multi-pattern matching acceleration library is developed based on the hash algorithm and Aho–Corasick (AC) algorithm. It aims to accelerate matching of large-scale rules, including matching of massive-scale fixed-length rules and matching of hundreds of thousands of variable-length rules.