首页|Exploring syntactical features for anomaly detection in application logs
Exploring syntactical features for anomaly detection in application logs
扫码查看
点击上方二维码区域,可以放大扫码查看
原文链接
NSTL
Walter De Gruyter
In this research, we analyze the effect of lightweight syntactical feature extraction techniques from the field of information retrieval for log abstraction in information security. To this end, we evaluate three feature extraction techniques and three clustering algorithms on four different security datasets for anomaly detection. Results demonstrate that these techniques have a role to play for log abstraction in the form of extracting syntactic features which improves the identification of anomalous minority classes, specifically in homogeneous security datasets.
information securitylog abstractionsyntactic featuresclustering
Heywood, Malcolm、Copstein, Rafael、Karlsen, Egil、Schwartzentruber, Jeff、Zincir-Heywood, Nur
NSTL
Walter De Gruyter
