Abstract

This paper presents a new algorithm for generation of attack signatures based on sequence alignment. The algorithm is composed of two parts: a local alignment algorithm-GASBSLA (Generation of Attack Signatures Based on Sequence Local Alignment) and a multi-sequence alignment algorithm-TGMSA (Tri-stage Gradual Multi-Sequence Alignment). With the inspiration of sequence alignment used in Bioinformatics, GASBSLA replaces global alignment and constant weight penalty model by local alignment and affine penalty model to improve the generality of attack signatures. TGMSA presents a new pruning policy to make the algorithm more insensitive to noises in the generation of attack signatures. In this paper, GASBSLA and TGMSA are described in detail and validated by experiments.

Highlights

  • Network worms, viruses and malicious codes are still the top threat against the current Internet and enterprise security, and they cause a loss of hundreds of millions dollars every year [1].Intrusion detection based on attack signatures is the most effective solution of this issue currently, but the continuous emergence of new types of attacks and polymorphic engines such as PHolyP [2] are great challenges to the existing intrusion detection technologies

  • The research on algorithms for generation of attack signatures is mainly based on string mode, including the following categories: algorithms based on the LCS, algorithms based on the Token [4], algorithms based on sequence

  • We present a new algorithm for generation of attack signatures based on sequence alignment through analyzing the algorithms presented by [3] and referring to the idea of sequence alignment used in Bioinformatics

Read more

Summary

Introduction

Viruses and malicious codes are still the top threat against the current Internet and enterprise security, and they cause a loss of hundreds of millions dollars every year [1].Intrusion detection based on attack signatures is the most effective solution of this issue currently, but the continuous emergence of new types of attacks and polymorphic engines such as PHolyP [2] are great challenges to the existing intrusion detection technologies To solve this problem, automatic generation of attack signatures has been concerned by more and more researchers and has become a new hotspot in intrusion detection since 2003 [3].

Related Research
CMENW Algorithm
HMSA Algorithm
Smith-Waterman Algorithm
GASBSLA Algorithm and TGMSA Algorithm
GASBSLA Algorithm
TGMSA Algorithm
The Selection of Alignment Similarity Confidence Interval
Experimental Results
Algorithm Validity Verification
Noise Resisting Ability Verification
Conclusions
Full Text
Paper version not known

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
An Algorithm for Generation of Attack Signatures Based on Sequences Alignment
Nan Li ... Haiquan Wang
-
Nan Li, et. al.Nan Li ... Haiquan Wang
01 Dec 2008
Evaluating global and local sequence alignment methods for comparing patient medical records
Ming Huang ... Nilay D. Shah
BMC Medical Informatics and Decision Making | VOL. 19
Ming Huang, et. al.Ming Huang ... Nilay D. Shah
01 Dec 2019
Programming Global and Local Sequence Alignment by Using R
Beatriz González-Pérez ... Juan Sampedro
-
Beatriz González-Pérez, et. al.Beatriz González-Pérez ... Juan Sampedro
24 Jul 2013
Alignment of Cell Lineage Trees Elucidates Genetic Programs for the Development and Evolution of Cell Types
Meng Yuan ... Xiaolong Cao
iScience | VOL. 23
Meng Yuan, et. al.Meng Yuan ... Xiaolong Cao
16 Jun 2020
View more papers

More From: Journal of Software Engineering and Applications

Paper Title
Journal
Date
Author
Implementation of the Integrated Green’s Function Method for 3D Poisson’s Equation in a Large Aspect Ratio Computational Domain
Ji Qiang ... Arianna Formenti
Journal of Software Engineering and Applications | VOL. -
Ji Qiang, et. al.Ji Qiang ... Arianna Formenti
01 Jan 2024
Evaluating Privacy Leakage and Memorization Attacks on Large Language Models (LLMs) in Generative AI Applications
Harshvardhan Aditya ... Parijat Rai
Journal of Software Engineering and Applications | VOL. -
Harshvardhan Aditya, et. al.Harshvardhan Aditya ... Parijat Rai
01 Jan 2024
A Comparative Analysis of Cybersecurity Threat Taxonomies for Healthcare Organizations
Mahima Jaikanth ... Vijay K Madisetti
Journal of Software Engineering and Applications | VOL. 17
Mahima Jaikanth, et. al.Mahima Jaikanth ... Vijay K Madisetti
01 Jan 2024
Optimized CUDA Implementation to Improve the Performance of Bundle Adjustment Algorithm on GPUs
Pranay R. Kommera ... John E. McInroy
Journal of Software Engineering and Applications | VOL. 17
Pranay R. Kommera, et. al.Pranay R. Kommera ... John E. McInroy
01 Jan 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.