Intrusion detection systems utilize the analysis of log data to effectively detect anomalies. However, detecting anomalies quickly and effectively in large and heterogeneous log data can be challenging. To address this difficulty, this study proposes the GLSTM (Graph-based Long Short-Term Memory) framework, a graph-based deep learning model that analyzes log data to detect cyber-attacks rapidly and effectively. The framework involves standardizing the complex and diverse log data, training this data on an artificial intelligence model, and detecting anomalies. Initially, the complex and diverse log data is transformed into graph data using Node2Vec, enabling efficient and rapid analysis on the artificial intelligence model. Subsequently, these graph data are trained using LSTM (Long Short-Term Memory), Bi-LSTM, and GRU(Gated Recurrent Unit) deep learning algorithms. The proposed framework is tested using Hadoop’s HDFS dataset, collected from different systems and heterogeneous sources, as well as the BGL and IMDB datasets. Experimental results on the selected datasets demonstrate high levels of success.
Primary Language | English |
---|---|
Subjects | Information Security and Cryptology |
Journal Section | Research Articles |
Authors | |
Publication Date | November 30, 2023 |
Published in Issue | Year 2023 Volume: 5 Issue: 3 |
Chaos Theory and Applications in Applied Sciences and Engineering: An interdisciplinary journal of nonlinear science
The published articles in CHTA are licensed under a Creative Commons Attribution-NonCommercial 4.0 International License