Paper Info
Title
An automated approach for abstracting execution logs to execution events
Abstract
Execution logs are generated by output statements that developers insert into the source code. Execution logs are widely available and are helpful in monitoring, remote issue resolution, and system understanding of complex enterprise applications. There are many proposals for standardized log formats such as the W3C and SNMP formats. However, most applications use ad hoc non-standardized logging formats. Automated analysis of such logs is complex due to the loosely defined structure and a large non-fixed vocabulary of words. The large volume of logs, produced by enterprise applications, limits the usefulness of manual analysis techniques. Automated techniques are needed to uncover the structure of execution logs. Using the uncovered structure, sophisticated analysis of logs can be performed. In this paper, we propose a log abstraction technique that recognizes the internal structure of each log line. Using the recovered structure, log lines can be easily summarized and categorized to help comprehend and investigate the complex behavior of large software applications. Our proposed approach handles free-form log lines with minimal requirements on the format of a log line. Through a case study using log files from four enterprise applications, we demonstrate that our approach abstracts log files of different complexities with high precision and recall. Copyright © 2008 John Wiley & Sons, Ltd.
Year
DOI
Venue
2008
10.1002/smr.v20:4
Journal of Software Maintenance
Keywords
Field
DocType
source code,dynamic analysis
Data mining,Abstraction,Source code,Computer science,Precision and recall,Web log analysis software,Software,Vocabulary,Database,Simple Network Management Protocol
Journal
Volume
Issue
ISSN
20
4
1532-060X
Citations 
PageRank 
References 
32
1.28
19
Authors
4
Name
Order
Citations
PageRank
Zhen Ming Jiang178040.11
Ahmed E. Hassan25959287.68
Gilbert Hamann31306.26
Parminder Flora441619.50