{"id":"https://openalex.org/W4281616568","doi":"https://doi.org/10.1145/3529399.3529430","title":"Threshold based Technique to Detect Anomalies using Log Files","display_name":"Threshold based Technique to Detect Anomalies using Log Files","publication_year":2022,"publication_date":"2022-03-11","ids":{"openalex":"https://openalex.org/W4281616568","doi":"https://doi.org/10.1145/3529399.3529430"},"language":"en","primary_location":{"id":"doi:10.1145/3529399.3529430","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3529399.3529430","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2022 7th International Conference on Machine Learning Technologies (ICMLT)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5031792300","display_name":"Toluwalope David Akande","orcid":null},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"Toluwalope David Akande","raw_affiliation_strings":["Faculty of Computer Science,UNB, CIC,UNB, Canada"],"affiliations":[{"raw_affiliation_string":"Faculty of Computer Science,UNB, CIC,UNB, Canada","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5103050275","display_name":"Barjinder Kaur","orcid":"https://orcid.org/0000-0001-8469-9899"},"institutions":[{"id":"https://openalex.org/I106938459","display_name":"University of New Brunswick","ror":"https://ror.org/05nkf0n29","country_code":"CA","type":"education","lineage":["https://openalex.org/I106938459"]}],"countries":["CA"],"is_corresponding":false,"raw_author_name":"Barjinder Kaur","raw_affiliation_strings":["Faculty of Computer Science,UNB, UNB, Canada"],"affiliations":[{"raw_affiliation_string":"Faculty of Computer Science,UNB, UNB, Canada","institution_ids":["https://openalex.org/I106938459"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5052766937","display_name":"Sajjad Dadkhah","orcid":"https://orcid.org/0000-0002-5582-0255"},"institutions":[{"id":"https://openalex.org/I106938459","display_name":"University of New Brunswick","ror":"https://ror.org/05nkf0n29","country_code":"CA","type":"education","lineage":["https://openalex.org/I106938459"]}],"countries":["CA"],"is_corresponding":false,"raw_author_name":"Sajjad Dadkhah","raw_affiliation_strings":["Faculty of Computer Science,UNB, UNB, Canada"],"affiliations":[{"raw_affiliation_string":"Faculty of Computer Science,UNB, UNB, Canada","institution_ids":["https://openalex.org/I106938459"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5034685391","display_name":"Ali A. Ghorbani","orcid":"https://orcid.org/0000-0001-9189-6268"},"institutions":[{"id":"https://openalex.org/I106938459","display_name":"University of New Brunswick","ror":"https://ror.org/05nkf0n29","country_code":"CA","type":"education","lineage":["https://openalex.org/I106938459"]}],"countries":["CA"],"is_corresponding":false,"raw_author_name":"Ali A. Ghorbani","raw_affiliation_strings":["Faculty of Computer Science,UNB, UNB, Canada"],"affiliations":[{"raw_affiliation_string":"Faculty of Computer Science,UNB, UNB, Canada","institution_ids":["https://openalex.org/I106938459"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5031792300"],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":1.2436,"has_fulltext":false,"cited_by_count":9,"citation_normalized_percentile":{"value":0.79971644,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"191","last_page":"198"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9990000128746033,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9988999962806702,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7410132884979248},{"id":"https://openalex.org/keywords/web-log-analysis-software","display_name":"Web log analysis software","score":0.48669177293777466},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.48256176710128784},{"id":"https://openalex.org/keywords/anomaly-detection","display_name":"Anomaly detection","score":0.4672040343284607},{"id":"https://openalex.org/keywords/tree","display_name":"Tree (set theory)","score":0.45199090242385864},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.1482439935207367},{"id":"https://openalex.org/keywords/mathematics","display_name":"Mathematics","score":0.12700295448303223},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.11809524893760681}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7410132884979248},{"id":"https://openalex.org/C104352257","wikidata":"https://www.wikidata.org/wiki/Q1238961","display_name":"Web log analysis software","level":5,"score":0.48669177293777466},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.48256176710128784},{"id":"https://openalex.org/C739882","wikidata":"https://www.wikidata.org/wiki/Q3560506","display_name":"Anomaly detection","level":2,"score":0.4672040343284607},{"id":"https://openalex.org/C113174947","wikidata":"https://www.wikidata.org/wiki/Q2859736","display_name":"Tree (set theory)","level":2,"score":0.45199090242385864},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.1482439935207367},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.12700295448303223},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.11809524893760681},{"id":"https://openalex.org/C134306372","wikidata":"https://www.wikidata.org/wiki/Q7754","display_name":"Mathematical analysis","level":1,"score":0.0},{"id":"https://openalex.org/C173576120","wikidata":"https://www.wikidata.org/wiki/Q2641220","display_name":"Static web page","level":4,"score":0.0},{"id":"https://openalex.org/C11392498","wikidata":"https://www.wikidata.org/wiki/Q11288","display_name":"Web server","level":3,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3529399.3529430","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3529399.3529430","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2022 7th International Conference on Machine Learning Technologies (ICMLT)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.6399999856948853,"display_name":"Reduced inequalities","id":"https://metadata.un.org/sdg/10"}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":19,"referenced_works":["https://openalex.org/W1980262437","https://openalex.org/W2122646361","https://openalex.org/W2272254334","https://openalex.org/W2560021099","https://openalex.org/W2595201844","https://openalex.org/W2767094836","https://openalex.org/W2813318576","https://openalex.org/W2904539465","https://openalex.org/W2947815220","https://openalex.org/W2973137311","https://openalex.org/W3033055162","https://openalex.org/W3040197085","https://openalex.org/W3042356186","https://openalex.org/W3045195396","https://openalex.org/W3089718532","https://openalex.org/W3097861059","https://openalex.org/W3121951581","https://openalex.org/W3158187846","https://openalex.org/W4254182148"],"related_works":["https://openalex.org/W2748952813","https://openalex.org/W2390279801","https://openalex.org/W2358668433","https://openalex.org/W2376932109","https://openalex.org/W2001405890","https://openalex.org/W2382290278","https://openalex.org/W2478288626","https://openalex.org/W2350741829","https://openalex.org/W2530322880","https://openalex.org/W1596801655"],"abstract_inverted_index":{"Every":[0],"action":[1],"carried":[2],"out":[3],"on":[4,63,114],"computer":[5],"systems":[6],"can":[7,18],"be":[8],"captured":[9],"using":[10,48,75],"log":[11,16,31,39,57,68],"files.":[12,40,58],"Proper":[13],"scanning":[14],"of":[15,106],"files":[17,32],"divulge":[19],"security":[20],"breaches.":[21],"However,":[22],"a":[23,49,65],"large-scale":[24],"data":[25],"processing":[26,108],"engine":[27],"should":[28],"analyze":[29],"the":[30,35,100],"due":[33,102],"to":[34,51,98,103],"voluminous":[36],"events":[37],"in":[38,110],"This":[41],"paper":[42],"proposes":[43],"an":[44,81],"anomaly":[45],"detection":[46],"approach":[47,84],"threshold":[50],"discriminate":[52],"between":[53],"regular":[54],"and":[55,90],"aberrant":[56],"The":[59,70],"experiments":[60,101],"are":[61],"performed":[62],"HDFS,":[64],"publicly":[66],"available":[67],"dataset.":[69],"system\u2019s":[71],"efficacy":[72],"is":[73,96],"evaluated":[74],"Robust":[76],"Random":[77],"Cut":[78],"Forest":[79],"(RRCF),":[80],"unsupervised":[82],"tree-based":[83],"where":[85],"we":[86],"achieved":[87],"precision":[88],"97.10%":[89],"F1-score":[91],"98.47%":[92],"results.":[93],"Hadoop":[94],"framework":[95],"utilized":[97],"run":[99],"its":[104],"capability":[105],"parallel":[107],"tasks":[109],"less":[111],"time,":[112],"even":[113],"large":[115],"datasets.":[116]},"counts_by_year":[{"year":2025,"cited_by_count":4},{"year":2023,"cited_by_count":4},{"year":2022,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}