Reference Hub

This research has been cited in:

Article
An Efficient Way to Parse Logs Automatically for Multiline EventsComputer Systems Science and Engineering10.32604/csse.2023.037505
Article
Blockchain-based deep learning in IoT, healthcare and cryptocurrency price prediction: a comprehensive reviewInternational Journal of Quality & Reliability Management10.1108/IJQRM-12-2022-0373
Conference
Higher-order Markov Graph based Bug Detection in Cloud-based Deployments2022 IEEE International Performance, Computing, and Communications Conference (IPCCC)10.1109/IPCCC55026.2022.9894353

Anomaly Detection Using System Logs: A Deep Learning Approach

Rohit Sinha, Rittika Sur, Ruchi Sharma, Avinash K. Shrivastava

Source Title: International Journal of Information Security and Privacy (IJISP)16(1)

ISSN: 1930-1650|EISSN: 1930-1669|EISBN13: 9781683180203|DOI: 10.4018/IJISP.285584

Cite Article Cite Article

MLA

Sinha, Rohit, et al. "Anomaly Detection Using System Logs: A Deep Learning Approach." IJISP vol.16, no.1 2022: pp.1-15. http://doi.org/10.4018/IJISP.285584

APA

Sinha, R., Sur, R., Sharma, R., & Shrivastava, A. K. (2022). Anomaly Detection Using System Logs: A Deep Learning Approach. International Journal of Information Security and Privacy (IJISP), 16(1), 1-15. http://doi.org/10.4018/IJISP.285584

Chicago

Sinha, Rohit, et al. "Anomaly Detection Using System Logs: A Deep Learning Approach," International Journal of Information Security and Privacy (IJISP) 16, no.1: 1-15. http://doi.org/10.4018/IJISP.285584

Export Reference

Favorite Full-Issue Download

View Full Text HTML

View Full Text PDF

Abstract

Anomaly detection is a very important step in building a secure and trustworthy system. Manually it is daunting to analyze and detect failures and anomalies. In this paper, we proposed an approach that leverages the pattern matching capabilities of Convolution Neural Network (CNN) for anomaly detection in system logs. Features from log files are extracted using a windowing technique. Based on this feature, a one-dimensional image (1×n dimension) is generated where the pixel values of an image correlate with the features of the logs. On these images, the 1D Convolution operation is applied followed by max pooling. Followed by Convolution layers, a multi-layer feed-forward neural network is used as a classifier that learns to classify the logs as normal or abnormal from the representation created by the convolution layers. The model learns the variation in log pattern for normal and abnormal behavior. The proposed approach achieved improved accuracy compared to existing approaches for anomaly detection in Hadoop Distributed File System (HDFS) logs.

You do not own this content. Please login to recommend this title to your institution's librarian or purchase it from the IGI Global bookstore.

Username or email: *

Password: *

Forgot individual login password?

Create individual account

Anomaly Detection Using System Logs: A Deep Learning Approach

MLA

APA

Chicago

Export Reference

Abstract

Request Access