Academics Create Automatic Signature Generation Prototype

By Ryan Naraine  |  Posted 05-23-2006 Print


EUC with HCI: Why It Matters

Security researchers at two U.S. universities create a new system for the automatic generation of vulnerability signatures to block exploits from targeting unpatched systems.

OAKLAND, Calif.—Internet security researchers at two U.S. universities have created a prototype system for the automatic generation of vulnerability signatures, promising a new technique to block exploits from attacking unpatched software vulnerabilities.

In a paper, here in PDF form, presented at the 2006 IEEE (Institute of Electrical and Electronics Engineers) Symposium on Security and Privacy here, academics from the University of Wisconsin-Madison and Carnegie Mellon University say the system can automatically generate a high-quality vulnerability signature using a single exploit.

"We need automatic signature generation techniques because manual signature generation is slow and error prone," said David Brumley, a doctoral student in the computer science department at the Carnegie Mellon University.

Although the research work is highly theoretical and unproven in real world scenarios, anti-malware experts at the conference agree that the speedy generation of signatures to thwart zero-day attacks is even more important in today's environment.

Brumley, who presented the paper on behalf of the two universities, said previously unknown or unpatched vulnerabilities can be exploited faster than a human can respond, especially in cases of worm outbreaks.


Submit a Comment

Loading Comments...
eWeek eWeek

Have the latest technology news and resources emailed to you everyday.

By submitting your information, you agree that cioinsight.com may send you cioinsight offers via email, phone and text message, as well as email offers about other products and services that cioinsight believes may be of interest to you. cioinsight will process your information in accordance with the Quinstreet Privacy Policy.

Click for a full list of Newsletterssubmit