Intelli-log : A real-time log analyzer
Conference proceedings article
ผู้เขียน/บรรณาธิการ
กลุ่มสาขาการวิจัยเชิงกลยุทธ์
ไม่พบข้อมูลที่เกี่ยวข้อง
รายละเอียดสำหรับงานพิมพ์
รายชื่อผู้แต่ง: Kiatwonghong N., Maneewongvatana S.
ผู้เผยแพร่: Hindawi
ปีที่เผยแพร่ (ค.ศ.): 2010
Volume number: 1
หน้าแรก: V1383
หน้าสุดท้าย: V1388
ISBN: 9781424463688
นอก: 0146-9428
eISSN: 1745-4557
ภาษา: English-Great Britain (EN-GB)
บทคัดย่อ
In this paper, we present a technique to analyze and correlate the different types of computer log files. Log files are generated from servers and network devices to record operations that occur in the computers and networks. As log files are too enormous to manualize, we develop a tool to maximize accuracy as well as efficiency while high speed processing is the goal. Firstly, we must improve the accuracy by using learning algorithms to classify the normal operations from the abnormal ones such algorithms include tf-idf, association rules, k-means clustering, and decision tree. Secondly, we may adapt for less accuracy in order to gain speed for both with and/or without parallel processing techniques. We also construct an adaptive learning algorithm to update the model. Then we flush out out-of-date model while the logs are being captured and processed. The result can achieve the goal as they can reach about 30-40% in real-time processing with nearly zero false positive results. ฉ 2010 IEEE.
คำสำคัญ
Computer log analysis, Data stream, Learning algorithm
ติดต่อสอบถามเพิ่มเติมได้ที่