no code implementations • 28 Mar 2019 • Ashwinkumar Ganesan, Pooja Parameshwarappa, Akshay Peshave, ZhiYuan Chen, Tim Oates
In this paper, we proposeaprobabilistic abductive reasoningapproach that augments an exist-ing rule-based IDS (snort [29]) to detect these evolved attacks by (a)Predicting rule conditions that are likely to occur (based on existingrules) and (b) able to generate new snort rules when provided withseed rule (i. e. a starting rule) to reduce the burden on experts toconstantly update them.