Skip to main content
Conference Proceedings

Deep Unsupervised System Log Monitoring

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (2019) 11915 LNCS 545-553
DOI: 10.1007/978-3-030-35333-9_38
0Citations
Citations of this article
6Readers
Mendeley users who have this article in their library.
Get full text

Abstract

This work proposes a new unsupervised deep generative model for system logs. It is designed to be generic and may be used in various downstream anomaly detection tasks, such as system failure or intrusion detection. It is based on the (reasonable) assumption that most log lines follow rather fixed syntactic structures, which enables us to replace the costly traditional convolutional and recurrent architectures by a much faster component: a deep averaging network. Our model still exploits a standard recurrent model with attention to capture the dependencies between successive log lines. We experimentally validate the proposed generative model on a real dataset obtained from a state-of-the-art High Performance Computing cluster and show the effectiveness of the proposed approach in modeling the “normal” behaviour of the system.

Author supplied keywords

Cite

CITATION STYLE

APA

Nourtel, H., Cerisara, C., & Cruz-Lara, S. (2019). Deep Unsupervised System Log Monitoring. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 11915 LNCS, pp. 545–553). Springer. https://doi.org/10.1007/978-3-030-35333-9_38

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free