Automatic Signature Generation for Network Services through Selective Extraction of Anomalous Contents
Pedro Garcia-Teodoro; Pablo Muñoz-Feldstedt; David Ruete-Zúñiga;
Automatic Signature Generation for Network Services through Selective Extraction of Anomalous Contents
In this paper, a novel methodology for automatic signature generation is proposed. It is based on modelling the normal behaviour of a given network service, and identifying the contents that contribute the most to the anomalous classification of a given event. These contents are extracted to provide the anomaly with a “signature” for representing it. The promising experimental results obtained show that the proposed scheme can actively contribute to the usual hard task of creating signatures for new attacks, thus improving the general monitoring and security management of network environments.
- University of Granada Spain
selected citations These citations are derived from selected sources.This is an alternative to the "Influence" indicator, which also reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).0 popularity This indicator reflects the "current" impact/attention (the "hype") of an article in the research community at large, based on the underlying citation network.Average influence This indicator reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).Average impulse This indicator reflects the initial momentum of an article directly after its publication, based on the underlying citation network.Average
selected citations
Citations provided by BIP!
These citations are derived from selected sources.
This is an alternative to the "Influence" indicator, which also reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).
Citations provided by BIP!popularityPopularity provided by BIP!
This indicator reflects the "current" impact/attention (the "hype") of an article in the research community at large, based on the underlying citation network.
Popularity provided by BIP! 0
Average
Average
Average
This action will publish the selected files and record in Zenodo. Are you sure you want to proceed?