Data Mining Techniques for Semi-automatic Signature Generation

Abstract

This paper presents a novel approach to the task of semi-automatic generation of signatures for misuse-based network intrusion detection. The presented approach is a part of a Basset system, a hybrid misuse-anomaly solution employing Bayesian networks. The signature generation part is intended to work with data received from the Bayesian network, in turn providing the network with signatures for novel attacks.