• 文献检索
  • 文档翻译
  • 深度研究
  • 学术资讯
  • Suppr Zotero 插件Zotero 插件
  • 邀请有礼
  • 套餐&价格
  • 历史记录
应用&插件
Suppr Zotero 插件Zotero 插件浏览器插件Mac 客户端Windows 客户端微信小程序
定价
高级版会员购买积分包购买API积分包
服务
文献检索文档翻译深度研究API 文档MCP 服务
关于我们
关于 Suppr公司介绍联系我们用户协议隐私条款
关注我们

Suppr 超能文献

核心技术专利:CN118964589B侵权必究
粤ICP备2023148730 号-1Suppr @ 2026

文献检索

告别复杂PubMed语法,用中文像聊天一样搜索,搜遍4000万医学文献。AI智能推荐,让科研检索更轻松。

立即免费搜索

文件翻译

保留排版,准确专业,支持PDF/Word/PPT等文件格式,支持 12+语言互译。

免费翻译文档

深度研究

AI帮你快速写综述,25分钟生成高质量综述,智能提取关键信息,辅助科研写作。

立即免费体验

两类剪枝日志消息异常检测

Two Class Pruned Log Message Anomaly Detection.

作者信息

Farzad Amir, Gulliver T Aaron

机构信息

Department of Electrical and Computer Engineering, University of Victoria, PO Box 1700, STN CSC, Victoria, BC V8W 2Y2 Canada.

出版信息

SN Comput Sci. 2021;2(5):391. doi: 10.1007/s42979-021-00772-9. Epub 2021 Jul 24.

DOI:10.1007/s42979-021-00772-9
PMID:34337434
原文链接:https://pmc.ncbi.nlm.nih.gov/articles/PMC8310418/
Abstract

Log messages are widely used in cloud servers and other systems. Millions of logs are generated each day which makes them important for anomaly detection. However, they are complex unstructured text messages which makes this task difficult. In this paper, a hybrid log message anomaly detection technique is proposed which employs pruning of positive and negative logs. Reliable positive log messages are first selected using a Gaussian mixture model algorithm. Then reliable negative logs are selected using the K-means, Gaussian mixture model and Dirichlet process Gaussian mixture model methods iteratively. It is shown that the precision for positive and negative logs with pruning is high. Anomaly detection is done using a deep learning long short-term memory network. The proposed model is evaluated using the well-known BGL, Openstack, and Thunderbird data sets. The results obtained indicate that the proposed model performs better than several well-known algorithms.

摘要

日志消息在云服务器和其他系统中被广泛使用。每天都会生成数百万条日志,这使得它们对于异常检测很重要。然而,它们是复杂的非结构化文本消息,这使得这项任务变得困难。本文提出了一种混合日志消息异常检测技术,该技术采用了对正、负日志的修剪。首先使用高斯混合模型算法选择可靠的正日志消息。然后,使用K均值、高斯混合模型和狄利克雷过程高斯混合模型方法迭代地选择可靠的负日志。结果表明,经过修剪的正、负日志的精度很高。使用深度学习长短期记忆网络进行异常检测。使用著名的BGL、Openstack和Thunderbird数据集对所提出的模型进行评估。获得的结果表明,所提出的模型比几种著名算法表现更好。

https://cdn.ncbi.nlm.nih.gov/pmc/blobs/5059/8310418/ea2b28473324/42979_2021_772_Fig5_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/5059/8310418/3bd287780f33/42979_2021_772_Fig1_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/5059/8310418/25c1ef829993/42979_2021_772_Fig2_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/5059/8310418/4b9a836a2c56/42979_2021_772_Fig3_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/5059/8310418/2232ec8e03a1/42979_2021_772_Fig4_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/5059/8310418/ea2b28473324/42979_2021_772_Fig5_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/5059/8310418/3bd287780f33/42979_2021_772_Fig1_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/5059/8310418/25c1ef829993/42979_2021_772_Fig2_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/5059/8310418/4b9a836a2c56/42979_2021_772_Fig3_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/5059/8310418/2232ec8e03a1/42979_2021_772_Fig4_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/5059/8310418/ea2b28473324/42979_2021_772_Fig5_HTML.jpg

相似文献

1
Two Class Pruned Log Message Anomaly Detection.两类剪枝日志消息异常检测
SN Comput Sci. 2021;2(5):391. doi: 10.1007/s42979-021-00772-9. Epub 2021 Jul 24.
2
CLDTLog: System Log Anomaly Detection Method Based on Contrastive Learning and Dual Objective Tasks.CLDTLog:基于对比学习和双重目标任务的系统日志异常检测方法。
Sensors (Basel). 2023 May 24;23(11):5042. doi: 10.3390/s23115042.
3
ConAnomaly: Content-Based Anomaly Detection for System Logs.ConAnomaly:基于内容的系统日志异常检测。
Sensors (Basel). 2021 Sep 13;21(18):6125. doi: 10.3390/s21186125.
4
Impact of log parsing on deep learning-based anomaly detection.日志解析对基于深度学习的异常检测的影响。
Empir Softw Eng. 2024;29(6):139. doi: 10.1007/s10664-024-10533-w. Epub 2024 Aug 17.
5
LogEvent2vec: LogEvent-to-Vector Based Anomaly Detection for Large-Scale Logs in Internet of Things.日志事件 2 向量:基于日志事件到向量的物联网大规模日志异常检测。
Sensors (Basel). 2020 Apr 26;20(9):2451. doi: 10.3390/s20092451.
6
DeepSense: A Physics-Guided Deep Learning Paradigm for Anomaly Detection in Soil Gas Data at Geologic CO Storage Sites.深感应:地质 CO2 封存场地土壤气体数据异常检测的物理引导深度学习范式。
Environ Sci Technol. 2021 Nov 16;55(22):15531-15541. doi: 10.1021/acs.est.1c04048. Epub 2021 Oct 25.
7
A Deep Learning Ensemble for Network Anomaly and Cyber-Attack Detection.深度学习在网络异常和网络攻击检测中的应用。
Sensors (Basel). 2020 Aug 15;20(16):4583. doi: 10.3390/s20164583.
8
Optimized deep maxout for crowd anomaly detection: A hybrid optimization-based model.用于人群异常检测的优化深度最大池化:一种基于混合优化的模型。
Network. 2025 Feb;36(1):148-173. doi: 10.1080/0954898X.2024.2392772. Epub 2024 Sep 20.
9
Log Sequence Anomaly Detection Method Based on Contrastive Adversarial Training and Dual Feature Extraction.基于对比对抗训练和双特征提取的日志序列异常检测方法
Entropy (Basel). 2021 Dec 30;24(1):69. doi: 10.3390/e24010069.
10
Deep-cascade: Cascading 3D Deep Neural Networks for Fast Anomaly Detection and Localization in Crowded Scenes.深度级联:用于在拥挤场景中进行快速异常检测和定位的级联3D深度神经网络。
IEEE Trans Image Process. 2017 Apr;26(4):1992-2004. doi: 10.1109/TIP.2017.2670780. Epub 2017 Feb 17.

本文引用的文献

1
Covid-19 classification by FGCNet with deep feature fusion from graph convolutional network and convolutional neural network.基于图卷积网络和卷积神经网络的深度特征融合的FGCNet对新冠病毒病进行分类。
Inf Fusion. 2021 Mar;67:208-229. doi: 10.1016/j.inffus.2020.10.004. Epub 2020 Oct 9.
2
Distributed Online One-Class Support Vector Machine for Anomaly Detection Over Networks.分布式在线单类支持向量机在网络异常检测中的应用。
IEEE Trans Cybern. 2019 Apr;49(4):1475-1488. doi: 10.1109/TCYB.2018.2804940. Epub 2018 Mar 1.
3
Long short-term memory.
长短期记忆
Neural Comput. 1997 Nov 15;9(8):1735-80. doi: 10.1162/neco.1997.9.8.1735.