Unsupervised log message anomaly detection

被引:50
|
作者
Farzad, Amir [1 ]
Gulliver, T. Aaron [1 ]
机构
[1] Univ Victoria, Dept Elect & Comp Engn, STN CSC, POB 1700, Victoria, BC V8W 2Y2, Canada
来源
ICT EXPRESS | 2020年 / 6卷 / 03期
关键词
Anomaly detection; Classification; Deep learning; Log messages; Unsupervised learning;
D O I
10.1016/j.icte.2020.06.003
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Log messages are now broadly used in cloud and software systems. They are important for classification and anomaly detection as millions of logs are generated each day. In this paper, an unsupervised model for log message anomaly detection is proposed which employs Isolation Forest and two deep Autoencoder networks. The Autoencoder networks are used for training and feature extraction, and then for anomaly detection, while Isolation Forest is used for positive sample prediction. The proposed model is evaluated using the BGL, Openstack and Thunderbird log message data sets. The results obtained show that the number of negative samples predicted to be positive is low, especially with Isolation Forest and one Autoencoder. Further, the results are better than with other well-known models. (C) 2020 The Korean Institute of Communications and Information Sciences (KICS). Publishing services by Elsevier B.V.
引用
收藏
页码:229 / 237
页数:9
相关论文
共 50 条
  • [1] Two Class Pruned Log Message Anomaly Detection
    Farzad A.
    Gulliver T.A.
    [J]. SN Computer Science, 2021, 2 (5)
  • [2] An unsupervised heterogeneous log-based framework for anomaly detection
    Hajamydeen, Asif Iqbal
    Udzir, Nur Izura
    Mahmod, Ramlan
    Abdul Ghani, Abdul Azim
    [J]. TURKISH JOURNAL OF ELECTRICAL ENGINEERING AND COMPUTER SCIENCES, 2016, 24 (03) : 1117 - 1134
  • [3] Fuzzy CNN Autoencoder for Unsupervised Anomaly Detection in Log Data
    Gorokhov, Oleg
    Petrovskiy, Mikhail
    Mashechkin, Igor
    Kazachuk, Maria
    [J]. MATHEMATICS, 2023, 11 (18)
  • [4] LogAttn: Unsupervised Log Anomaly Detection with an AutoEncoder Based Attention Mechanism
    Zhang, Linming
    Li, Wenzhong
    Zhang, Zhijie
    Lu, Qingning
    Hou, Ce
    Hu, Peng
    Gui, Tong
    Lu, Sanglu
    [J]. KNOWLEDGE SCIENCE, ENGINEERING AND MANAGEMENT, PT III, 2021, 12817 : 222 - 235
  • [5] Unsupervised Log Anomaly Detection Method Based on Multi-Feature
    He, Shiming
    Deng, Tuo
    Chen, Bowen
    Sherratt, R. Simon
    Wang, Jin
    [J]. CMC-COMPUTERS MATERIALS & CONTINUA, 2023, 76 (01): : 517 - 541
  • [6] Log message anomaly detection with fuzzy C-means and MLP
    Amir Farzad
    T. Aaron Gulliver
    [J]. Applied Intelligence, 2022, 52 : 17708 - 17717
  • [7] Log message anomaly detection with fuzzy C-means and MLP
    Farzad, Amir
    Gulliver, T. Aaron
    [J]. APPLIED INTELLIGENCE, 2022, 52 (15) : 17708 - 17717
  • [8] Unsupervised Cross-system Log Anomaly Detection via Domain Adaptation
    Han, Xiao
    Yuan, Shuhan
    [J]. PROCEEDINGS OF THE 30TH ACM INTERNATIONAL CONFERENCE ON INFORMATION & KNOWLEDGE MANAGEMENT, CIKM 2021, 2021, : 3068 - 3072
  • [9] Dynamic log file analysis: An unsupervised cluster evolution approach for anomaly detection
    Landauer, Max
    Wurzenberger, Markus
    Skopik, Florian
    Settanni, Giuseppe
    Filzmoser, Peter
    [J]. COMPUTERS & SECURITY, 2018, 79 : 94 - 116
  • [10] Hybrid CAE-VAE for Unsupervised Anomaly Detection in Log File Systems
    Wadekar, Amey
    Gupta, Tanishq
    Vijan, Rohit
    Kazi, Faruk
    [J]. 2019 10TH INTERNATIONAL CONFERENCE ON COMPUTING, COMMUNICATION AND NETWORKING TECHNOLOGIES (ICCCNT), 2019,
12345