• DocumentCode
    2714543
  • Title

    Automatic Signature Generation for Network Services through Selective Extraction of Anomalous Contents

  • Author

    Teodoro, Pedro García ; Feldstedt, Pablo Muñoz ; Zúñiga, David Ruete

  • Author_Institution
    Fac. of Comput. Sci. & Telecommun. Eng., Dept. of Signal Theor., Telematics & Commun., Univ. of Granada, Granada, Spain
  • fYear
    2010
  • fDate
    9-15 May 2010
  • Firstpage
    370
  • Lastpage
    375
  • Abstract
    In this paper, a novel methodology for automatic signature generation is proposed. It is based on modelling the normal behaviour of a given network service, and identifying the contents that contribute the most to the anomalous classification of a given event. These contents are extracted to provide the anomaly with a “signature” for representing it. The promising experimental results obtained show that the proposed scheme can actively contribute to the usual hard task of creating signatures for new attacks, thus improving the general monitoring and security management of network environments.
  • Keywords
    digital signatures; anomalous contents; automatic signature generation; intrusion detection systems; network services; security management; selective extraction; Computer science; Databases; Environmental management; Information analysis; Information security; Intrusion detection; Monitoring; Performance analysis; Signal generators; Telematics; Anomaly detection; intrusion detection; network services; signature generation;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Telecommunications (AICT), 2010 Sixth Advanced International Conference on
  • Conference_Location
    Barcelona
  • Print_ISBN
    978-1-4244-6748-8
  • Type

    conf

  • DOI
    10.1109/AICT.2010.22
  • Filename
    5489797
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2714543