• DocumentCode
    58088
  • Title

    Automatic attack signature generation systems: A review

  • Author

    Kaur, Sukhpreet ; Singh, Monika

  • Author_Institution
    Thapar Univ. Patiala, Patiala, India
  • Volume
    11
  • Issue
    6
  • fYear
    2013
  • fDate
    Nov.-Dec. 2013
  • Firstpage
    54
  • Lastpage
    61
  • Abstract
    Signature-based intrusion detection systems provide solutions to counter the increasing number of attacks on network resources. But this is not helpful for novel attacks whose signatures aren´t available. Automated signature generation systems can work proactively to detect these attacks in real time and generate signatures of new attacks. This article analyzes the latest developments, including Honeycyber, Hancock, Arbor, Auto-Sign, Argos, Hamsa, F-Sign, and a hybrid honeyfarm-based defense system, comparing these systems on the basis of their ability to detect novel attacks, signature generation method, suitability for multiple instances of worms, type of signature generated, attacks and worms covered, false alarm rates, and relative strengths and weaknesses.
  • Keywords
    digital signatures; automated signature generation systems; automatic attack signature generation systems; network resources; signature based intrusion detection systems; Handwriting recognition; Intrusion detection; Signature generation; 0-day attack; intrusion detection system; signature generation;
  • fLanguage
    English
  • Journal_Title
    Security & Privacy, IEEE
  • Publisher
    ieee
  • ISSN
    1540-7993
  • Type

    jour

  • DOI
    10.1109/MSP.2013.51
  • Filename
    6515481
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=58088