{"id":"https://openalex.org/W4406458773","doi":"https://doi.org/10.1109/bigdata62323.2024.10825202","title":"Semi-supervised Configuration and Optimization of Anomaly Detection Algorithms on Log Data","display_name":"Semi-supervised Configuration and Optimization of Anomaly Detection Algorithms on Log Data","publication_year":2024,"publication_date":"2024-12-15","ids":{"openalex":"https://openalex.org/W4406458773","doi":"https://doi.org/10.1109/bigdata62323.2024.10825202"},"language":"en","primary_location":{"id":"doi:10.1109/bigdata62323.2024.10825202","is_oa":false,"landing_page_url":"https://doi.org/10.1109/bigdata62323.2024.10825202","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2024 IEEE International Conference on Big Data (BigData)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5022214141","display_name":"Vin\u00edcius Carvalho Beck","orcid":"https://orcid.org/0000-0002-3005-6553"},"institutions":[{"id":"https://openalex.org/I132118926","display_name":"Austrian Institute of Technology","ror":"https://ror.org/04knbh022","country_code":"AT","type":"facility","lineage":["https://openalex.org/I132118926"]}],"countries":["AT"],"is_corresponding":true,"raw_author_name":"Viktor Beck","raw_affiliation_strings":["AIT Austrian Institute of Technology,Vienna,Austria"],"affiliations":[{"raw_affiliation_string":"AIT Austrian Institute of Technology,Vienna,Austria","institution_ids":["https://openalex.org/I132118926"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5072210863","display_name":"Max Landauer","orcid":"https://orcid.org/0000-0003-3813-3151"},"institutions":[{"id":"https://openalex.org/I132118926","display_name":"Austrian Institute of Technology","ror":"https://ror.org/04knbh022","country_code":"AT","type":"facility","lineage":["https://openalex.org/I132118926"]}],"countries":["AT"],"is_corresponding":false,"raw_author_name":"Max Landauer","raw_affiliation_strings":["AIT Austrian Institute of Technology,Vienna,Austria"],"affiliations":[{"raw_affiliation_string":"AIT Austrian Institute of Technology,Vienna,Austria","institution_ids":["https://openalex.org/I132118926"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5029942543","display_name":"Markus Wurzenberger","orcid":"https://orcid.org/0000-0003-3259-6972"},"institutions":[{"id":"https://openalex.org/I132118926","display_name":"Austrian Institute of Technology","ror":"https://ror.org/04knbh022","country_code":"AT","type":"facility","lineage":["https://openalex.org/I132118926"]}],"countries":["AT"],"is_corresponding":false,"raw_author_name":"Markus Wurzenberger","raw_affiliation_strings":["AIT Austrian Institute of Technology,Vienna,Austria"],"affiliations":[{"raw_affiliation_string":"AIT Austrian Institute of Technology,Vienna,Austria","institution_ids":["https://openalex.org/I132118926"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5088439816","display_name":"Florian Skopik","orcid":"https://orcid.org/0000-0002-1922-7892"},"institutions":[{"id":"https://openalex.org/I132118926","display_name":"Austrian Institute of Technology","ror":"https://ror.org/04knbh022","country_code":"AT","type":"facility","lineage":["https://openalex.org/I132118926"]}],"countries":["AT"],"is_corresponding":false,"raw_author_name":"Florian Skopik","raw_affiliation_strings":["AIT Austrian Institute of Technology,Vienna,Austria"],"affiliations":[{"raw_affiliation_string":"AIT Austrian Institute of Technology,Vienna,Austria","institution_ids":["https://openalex.org/I132118926"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5057690103","display_name":"Andreas Rauber","orcid":"https://orcid.org/0000-0002-9272-6225"},"institutions":[{"id":"https://openalex.org/I145847075","display_name":"TU Wien","ror":"https://ror.org/04d836q62","country_code":"AT","type":"education","lineage":["https://openalex.org/I145847075"]}],"countries":["AT"],"is_corresponding":false,"raw_author_name":"Andreas Rauber","raw_affiliation_strings":["Vienna University of Technology,Vienna,Austria"],"affiliations":[{"raw_affiliation_string":"Vienna University of Technology,Vienna,Austria","institution_ids":["https://openalex.org/I145847075"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5022214141"],"corresponding_institution_ids":["https://openalex.org/I132118926"],"apc_list":null,"apc_paid":null,"fwci":0.3661,"has_fulltext":false,"cited_by_count":1,"citation_normalized_percentile":{"value":0.66594711,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":91,"max":95},"biblio":{"volume":null,"issue":null,"first_page":"2575","last_page":"2585"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9990000128746033,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.998199999332428,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/anomaly-detection","display_name":"Anomaly detection","score":0.658822774887085},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6359429359436035},{"id":"https://openalex.org/keywords/anomaly","display_name":"Anomaly (physics)","score":0.4805348515510559},{"id":"https://openalex.org/keywords/algorithm","display_name":"Algorithm","score":0.4451019763946533},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.3740711808204651}],"concepts":[{"id":"https://openalex.org/C739882","wikidata":"https://www.wikidata.org/wiki/Q3560506","display_name":"Anomaly detection","level":2,"score":0.658822774887085},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6359429359436035},{"id":"https://openalex.org/C12997251","wikidata":"https://www.wikidata.org/wiki/Q567560","display_name":"Anomaly (physics)","level":2,"score":0.4805348515510559},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.4451019763946533},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.3740711808204651},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0},{"id":"https://openalex.org/C26873012","wikidata":"https://www.wikidata.org/wiki/Q214781","display_name":"Condensed matter physics","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/bigdata62323.2024.10825202","is_oa":false,"landing_page_url":"https://doi.org/10.1109/bigdata62323.2024.10825202","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2024 IEEE International Conference on Big Data (BigData)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":26,"referenced_works":["https://openalex.org/W1661413208","https://openalex.org/W1963821364","https://openalex.org/W1970088130","https://openalex.org/W2039157918","https://openalex.org/W2100594342","https://openalex.org/W2122646361","https://openalex.org/W2337344967","https://openalex.org/W2743596624","https://openalex.org/W2754665629","https://openalex.org/W2767094836","https://openalex.org/W2947104347","https://openalex.org/W2947815220","https://openalex.org/W2965838158","https://openalex.org/W3102029110","https://openalex.org/W3199174176","https://openalex.org/W3201763010","https://openalex.org/W4244101820","https://openalex.org/W4284692184","https://openalex.org/W4286900933","https://openalex.org/W4293057307","https://openalex.org/W4304147676","https://openalex.org/W4376288669","https://openalex.org/W4389304845","https://openalex.org/W4393141466","https://openalex.org/W4402353147","https://openalex.org/W6840029797"],"related_works":["https://openalex.org/W2806741695","https://openalex.org/W4290647774","https://openalex.org/W3189286258","https://openalex.org/W3207797160","https://openalex.org/W3210364259","https://openalex.org/W4300558037","https://openalex.org/W2667207928","https://openalex.org/W2912112202","https://openalex.org/W4377864969","https://openalex.org/W3120251014"],"abstract_inverted_index":{"Cyber":[0],"threats":[1],"are":[2],"evolving":[3],"rapidly,":[4],"making":[5],"anomaly":[6],"detection":[7,16],"(AD)":[8],"in":[9,203],"system":[10],"log":[11,98,123],"data":[12,31,202],"increasingly":[13],"important":[14],"for":[15,105,163,168,200],"of":[17,24,45,68,160,179,192,206,227],"known":[18],"and":[19,42,66,116,129,146,165,196],"unknown":[20],"attacks.":[21],"The":[22,91,182],"configuration":[23,56,85,132],"AD":[25,69,106],"algorithms":[26],"heavily":[27],"depends":[28],"on":[29,142,221],"the":[30,43,84,154,177,190,194,197,210,225],"at":[32],"hand.":[33],"It":[34,110],"often":[35],"involves":[36],"a":[37,74,79,125],"complex":[38],"feature":[39],"selection":[40],"process":[41,86],"determination":[44],"parameters":[46],"such":[47],"as":[48],"thresholds":[49],"or":[50,87],"window":[51],"sizes.":[52],"In":[53],"many":[54],"cases,":[55],"requires":[57],"manual":[58],"intervention":[59],"by":[60,113],"domain":[61],"experts,":[62],"which":[63,77,122],"limits":[64],"accessibility":[65],"effectiveness":[67],"algorithms.":[70],"This":[71],"work":[72],"introduces":[73],"Configuration-Engine":[75],"(CE),":[76],"employs":[78],"semi-supervised":[80],"approach":[81,184],"to":[82,96,101,108,187,216],"automate":[83],"optimize":[88],"existing":[89],"configurations.":[90,181],"CE":[92,134,155],"utilizes":[93],"statistical":[94],"methods":[95,107],"identify":[97],"line":[99],"properties":[100],"recognize":[102],"meaningful":[103],"tokens":[104],"monitor.":[109],"categorizes":[111],"variables":[112],"their":[114],"characteristics":[115],"behavior":[117],"over":[118,161,166],"time,":[119],"then":[120],"specifies":[121],"parts":[124],"detector":[126],"should":[127],"observe,":[128],"sets":[130],"appropriate":[131],"parameters.The":[133],"was":[135,185],"evaluated":[136],"using":[137],"four":[138],"different":[139,143],"detectors.":[140],"Evaluations":[141],"Apache":[144,164,201],"Access":[145],"audit":[147,169,222],"datasets":[148],"containing":[149],"attack":[150],"traces":[151],"showed":[152],"that":[153],"achieved":[156],"an":[157],"average":[158],"precision":[159,191],"0.94":[162],"0.79":[167],"datasets,":[170],"while":[171],"maintaining":[172],"high":[173],"recall,":[174],"competing":[175],"with":[176],"performance":[178],"expert-crafted":[180],"optimization":[183],"able":[186],"strongly":[188],"improve":[189],"both":[193],"CE\u2019s":[195,211],"experts\u2019":[198],"configurations":[199,212],"7":[204],"out":[205],"16":[207],"cases.":[208],"Furthermore,":[209],"were":[213],"significantly":[214],"dissimilar":[215],"each":[217],"other":[218],"when":[219],"generated":[220],"data,":[223],"highlighting":[224],"importance":[226],"automated":[228],"configuration.":[229]},"counts_by_year":[{"year":2025,"cited_by_count":1}],"updated_date":"2026-03-09T08:58:05.943551","created_date":"2025-10-10T00:00:00"}