Abstract | ||
---|---|---|
We have proposed automated signature generation engine for unknown attack detection. For this proposal, we have studied signature engine divided into header field and payload field. Especially, in payload field, we proposed signature generation agent which can be presented by using Suffix tree, and Longest Common Subsequence(LCSeq) among them is used to generate new signature automatically. Through the test, Snort signature and generated signature by using Longest Common Subsequence(LCSeq) are compared and evaluated. |
Year | DOI | Venue |
---|---|---|
2007 | 10.1007/978-3-540-72830-6_101 | KES-AMSTA |
Keywords | Field | DocType |
signature generation agent,unknown attack detection,worms detection,automated signature generation engine,new signature,longest common subsequence,suffix tree,signature engine,snort signature,header field,payload field | Data mining,Longest common subsequence problem,Computer science,Header,Suffix tree,Intrusion detection system,Payload | Conference |
Volume | ISSN | Citations |
4496 | 0302-9743 | 0 |
PageRank | References | Authors |
0.34 | 7 | 3 |
Name | Order | Citations | PageRank |
---|---|---|---|
Si-jung Kim | 1 | 26 | 8.97 |
geuk lee | 2 | 335 | 42.30 |
Bong-Han Kim | 3 | 2 | 2.13 |