APPARATUS AND METHOD OF SECURING NETWORK OF SUPPORTING DETECTION AND INTERCEPTION OF DYNAMIC ATTACK BASED HARDWARE

A network security device for supporting dynamic attack detection and interception based on hardware, and a method thereof are provided to improve preciseness of detection, and supplement a processing speed and performance vulnerability of a network solution in response to a real-time property request by detecting and intercepting dynamic attack on a network packet based on a hardware logic. A pattern matching engine(210) filters static attack on a network packet based on hardware, and a dynamic attack filter(230) filters dynamic attack on the network packet based on the hardware. A reaction engine(220) performs a countermeasure policy based on filtering results for the static/dynamic attack. A storing part stores the filtering result for the static/dynamic attack. The dynamic attack filter is an FPGA(Field Programmable Gate Array)-based high speed packet processor and includes more than one memory respectively matching with each dynamic attack type. The dynamic attack filter stores more than one threshold respectively matched dynamic attack names, counts dynamic attack detections of the network packet for a predetermined time, and determines the network packet as an abnormal packet when the counted number exceeds the threshold.