Information Trust Institute

Back to Listing

TSS/SoS Seminar: Automated Generation of Attack Signatures in Attack Graphs

Event Type
Information Trust Institute (ITI)
Coordinated Science Lab Auditorium (B02)
Nov 1, 2016   4:00 pm  
Phuong Cao, University of Illinois at Urbana-Champaign

Abstract: In this talk, we investigate applications of Factor Graphs to automatically generate attack signatures from security logs and domain expert knowledge. We demonstrate advantages of Factor Graphs over traditional probabilistic graphical models such as Bayesian Networks and Markov Random Fields in modeling security attacks. We illustrate Factor Graphs models using case studies of real attacks observed in the wild and at the National Center for Supercomputing Applications. Finally, we investigate how factor functions, a core component of Factor Graphs, can be constructed automatically to potentially improve detection accuracy and allow generalization of trained Factor Graph models in a variety of systems.

link for robots only