Survey on anomaly detection technology based on logs

ZHANG Yingjun, ZHANG Haixia, HUANG Kezhen; LIU shangqi, YANG Mu

doi:10.11959/j.issn.2096-109x.2020072

网络与信息安全学报 (Dec 2020)

Survey on anomaly detection technology based on logs

ZHANG Yingjun, ZHANG Haixia, HUANG Kezhen,
LIU shangqi, YANG Mu

Affiliations

ZHANG Yingjun, ZHANG Haixia, HUANG Kezhen: Trusted Computing and Information Assurance Laboratory, Institute of Software, Chinese Academy of Sciences, Beijing 100190, China
LIU shangqi, YANG Mu: Network Security Corps of Beijing Municipal Public Security Bureau, Beijing 100029, China

DOI: https://doi.org/10.11959/j.issn.2096-109x.2020072
Journal volume & issue: Vol. 6, no. 6
pp. 1 – 12

Abstract

Read online

Log information has become an important information resource in the rapid development of information systems. Through the analysis of logs, abnormal detection, fault diagnosis and performance diagnosis can be performed. The log-based anomaly detection technology was focused on. Firstly, the currently used log-based anomaly detection framework was introduced, and then the key link technologies such as log analysis and log anomaly detection were focused on. Finally, the current technology was summarized and suggestions for future research directions were given.

Published in 网络与信息安全学报

ISSN: 2096-109X (Print)
Publisher: POSTS&TELECOM PRESS Co., LTD
Country of publisher: China
LCC subjects: Science: Mathematics: Instruments and machines: Electronic computers. Computer science
Website: http://www.infocomm-journal.com/cjnis/CN/2096-109X/home.shtml

About the journal

Abstract

Keywords