Intrusion Detection and Prevention Systems (IDS/IPSes) are critical components of the service chain for many network deployments. Ever-increasing network line rates and security threats have imposed substantial performance and correctness requirements on these systems: 100Gbps+ throughput with 100K+ concurrent connections, while scanning for 10K+ attack signatures in every packet.