How to mimicking the construction of deep learning model for log anomaly detection

Jia Sun; Jianhui Zhang; Youjun Bu; Bo Chen; Xiangyu Lu; Surong Zhang

doi:10.1117/12.2628598

7 March 2022 How to mimicking the construction of deep learning model for log anomaly detection

Jia Sun, Jianhui Zhang, Youjun Bu, Bo Chen, Xiangyu Lu, Surong Zhang

Proceedings Volume 12167, Third International Conference on Electronics and Communication; Network and Computer Technology (ECNCT 2021); 121672W (2022) https://doi.org/10.1117/12.2628598
Event: 2021 Third International Conference on Electronics and Communication, Network and Computer Technology, 2021, Harbin, China

Abstract

Log anomaly detection based on deep learning is one of the research hotspots in the field of computer security. It is foreseeable that the mimicry theory proposed by Academician Wu Jiangxing will further improve the detection capabilities of deep learning models, but will also bring high resource consumption and difficulty in application. Therefore, this paper proposes a mimic model construction method that uses the output of complex models as prior knowledge to train lightweight heterogeneous execution bodies and then integrates them. Finally, it is based on DPCNN and TextCNN as complex models and lightweight executions respectively. The experiment of the body structure mimic model proves that while reducing the number of parameters from millions to thousands, its detection accuracy and F1 value are only about 2% and 4% lower than the original model, which greatly retains the original model. The detection capability.

Citation Download Citation

Jia Sun, Jianhui Zhang, Youjun Bu, Bo Chen, Xiangyu Lu, and Surong Zhang "How to mimicking the construction of deep learning model for log anomaly detection", Proc. SPIE 12167, Third International Conference on Electronics and Communication; Network and Computer Technology (ECNCT 2021), 121672W (7 March 2022); https://doi.org/10.1117/12.2628598

ACCESS THE FULL ARTICLE

INSTITUTIONAL
Select your institution to access the SPIE Digital Library.

SELECT YOUR INSTITUTION

PERSONAL
Sign in with your SPIE account to access your personal subscriptions or to use specific features such as save to my library, sign up for alerts, save searches, etc.

PERSONAL SIGN IN

No SPIE Account? Create one

PURCHASE THIS CONTENT

SUBSCRIBE TO DIGITAL LIBRARY

50 downloads per 1-year subscription

Members: $195

Non-members: $335 ADD TO CART

25 downloads per 1 - year subscription

Members: $145

Non-members: $250 ADD TO CART

PURCHASE SINGLE ARTICLE

Includes PDF, HTML & Video, when available

Members: $17.00

Non-members: $21.00 ADD TO CART

PROCEEDINGS
8 PAGES

DOWNLOAD PAPER SAVE TO MY LIBRARY

GET CITATION

RIGHTS & PERMISSIONS

Get copyright permission Get copyright permission on Copyright Marketplace

KEYWORDS

Convolution

Convolutional neural networks

Computer security

Defense and security

Feature extraction

Statistical modeling

RELATED CONTENT

High resolution remote sensing vehicle automatic detection based on feature...
Proceedings of SPIE (December 20 2021)

Sentiment analysis method based on CNN and attention mechanism
Proceedings of SPIE (July 28 2022)

Improved hybrid convolutional neural network combined with attention mechanism for...
Proceedings of SPIE (June 08 2023)

A fault diagnosis deep learning model based on feature extraction...
Proceedings of SPIE (October 20 2023)

Real-time traffic sign detection based on YOLOv2
Proceedings of SPIE (October 29 2018)

Encrypted traffic classification based on contrastive learning with spatial temporal...
Proceedings of SPIE (April 08 2024)

A hybrid model of residual dilated convolutional neural network and...
Proceedings of SPIE (February 28 2024)

Subscribe to Digital Library

Receive Erratum Email Alert

Keywords/Phrases

Search In:

Publication Years