Name
Title | ||
|---|---|---|
Cyberattack detection model using deep learning in a network log system with data visualization |
Abstract | ||
|---|---|---|
Network log data is significant for network administrators, since it contains information on every event that occurs in a network, including system errors, alerts, and packets sending statuses. Effectively analyzing large volumes of diverse log data brings opportunities to identify issues before they become problems and to prevent future cyberattacks; however, processing of the diverse NetFlow data poses challenges such as volume, velocity, and veracity of log data. In this study, by means of Elasticsearch, Logstash, and Kibana, i.e., the ELK Stack, we construct an analysis and management system for network log data, which provides functions to filter, analyze, and display network log data for further applications and creates data visualization on a Web browser. In addition, an advanced cyberattack detection model is facilitated using deep neural network (DNN), recurrent neural networks (RNN), and long short-term memory (LSTM) approaches. By knowing cyberattack behaviors and cross-validating with the log analysis system, one can learn from this model the characteristics of a variety of cyberattacks. Finally, we also implement Grafana to perform metrics monitoring. |
Year | DOI | Venue |
|---|---|---|
2021 | 10.1007/s11227-021-03715-6 | The Journal of Supercomputing |
Keywords | DocType | Volume |
Information security, ELK stack, DDoS, Cyberattack, Deep learning | Journal | 77 |
Issue | ISSN | Citations |
10 | 0920-8542 | 1 |
PageRank | References | Authors |
0.36 | 22 | 5 |
Name | Order | Citations | PageRank |
|---|---|---|---|
| Chu-hsing Lin | 1 | 386 | 50.62 |
| Chao-Tung Yang | 2 | 1196 | 139.50 |
| Yu-Wei Chan | 3 | 31 | 7.91 |
| Endah Kristiani | 4 | 27 | 5.81 |
| Wei-Je Jiang | 5 | 4 | 0.76 |