Streaming online log parsing method based on heuristic rule

JIANG Zhongyuan; TAO Meiyue; ZHAO Xiaoqing; FANG Xiaotong; LI Xinghua; MA Jianfeng

Tongxin xuebao (Apr 2024)

Streaming online log parsing method based on heuristic rule

JIANG Zhongyuan,
TAO Meiyue,
ZHAO Xiaoqing,
FANG Xiaotong,
LI Xinghua,
MA Jianfeng

Affiliations

JIANG Zhongyuan
TAO Meiyue
ZHAO Xiaoqing
FANG Xiaotong
LI Xinghua
MA Jianfeng

Journal volume & issue: Vol. 45
pp. 95 – 113

Abstract

Read online

To address the issues of inaccurate parsing and unstable performance in existing log parsing methods, a streaming online log parsing method based on heuristic rules, known as heuristic regex tree (HRTree), was proposed. Based on the drain method of parsing the structure tree, heuristic rules were introduced to split and construct the log, and some construction methods of the parse structure tree were optimized, so as to solve the problems of over fitting of log parameters and unstable parsing results of different system logs. Not only the classification of parsing results was accurate, but also the parameter content recognition was accurate. A large number of experimental results demonstrate that the proposed HRTree parsing method shows more than 90% parsing accuracy on different system logs.

massive log;log parsing;heuristic rule;HRTree method;accuracy

Published in Tongxin xuebao

ISSN: 1000-436X (Print)
Publisher: Editorial Department of Journal on Communications
Country of publisher: China
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering: Telecommunication
Website: http://www.infocomm-journal.com/txxb/EN/1000-436X/home.shtml

About the journal

Abstract

Keywords