An Attack Signatures Generation Sequence Alignment Algorithm Based on Production Rules
作者: Muhan Xue , Wen Yu
DOI: 10.1109/CONTROLO.2018.8439776
关键词:
摘要: Aiming at the problem that result of some attack sequence alignment methods is not necessarily optimal expression their characteristics. This paper presents a Production Rule Sequence Alignment Algorithm (PRSA) combining production rule inference mechanism which improves traditional algorithm. A new accumulation knowledge obtained by changing way and transformation signatures. PRSA overcomes extraction results produced algorithm cannot express signature accurately. Then, we establish an automatic generation model based on PRSA. The experimental show matching using can signatures accurately improve detection rate attacks.
sci-hub.st 参考文章(9)
Razieh Eskandari, Mehdi Shajari, Asadallah Asadi, Automatic signature generation for polymorphic worms by combination of token extraction and sequence alignment approaches conference on information and knowledge technology. pp. 1- 6 ,(2015) , 10.1109/IKT.2015.7288733
Basheer Mohamad Ahmad Al-Maqaleh, Genetic Algorithm Approach to Automated Discovery of Comprehensible Production Rules international conference on advanced computing. pp. 69- 71 ,(2012) , 10.1109/ACCT.2012.57
Ratinder Kaur, Maninder Singh, A Survey on Zero-Day Polymorphic Worm Detection Techniques IEEE Communications Surveys and Tutorials. ,vol. 16, pp. 1520- 1549 ,(2014) , 10.1109/SURV.2014.022714.00160
Saul B. Needleman, Christian D. Wunsch, A general method applicable to the search for similarities in the amino acid sequence of two proteins Journal of Molecular Biology. ,vol. 48, pp. 443- 453 ,(1970) , 10.1016/0022-2836(70)90057-4
T.F. Smith, M.S. Waterman, Identification of common molecular subsequences. Journal of Molecular Biology. ,vol. 147, pp. 195- 197 ,(1981) , 10.1016/0022-2836(81)90087-5
Jie Wang, Jianxin Wang, Jianer Chen, Xi Zhang, An Automated Signature Generation Approach for Polymorphic Worm Based on Color Coding international conference on communications. pp. 926- 931 ,(2009) , 10.1109/ICC.2009.5198721
J. Newsome, B. Karp, D. Song, Polygraph: automatically generating signatures for polymorphic worms ieee symposium on security and privacy. pp. 226- 241 ,(2005) , 10.1109/SP.2005.15
Wang Yong-jun, Survey of automatic attack signature generation Journal of Communications. ,(2009)
Lu Xi, Automatic Generation of Attack Signatures Based on Multi-Sequence Alignment Chinese Journal of Computers. ,(2006)