AnomalyAdapters: Parameter-Efficient Multi-Anomaly Task Detection

Ünal, Uğur; Dağ, Hasan

doi:10.1109/access.2022.3141161

Cited by 6 publications

(2 citation statements)

References 39 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Moura et al [20] discuss the employment of open-source programmable asset orchestration to defend against faults, congestion, or cyber-attacks in edge cloud systems. Ünal et al [21] propose a multi-anomaly detection model for cyber threat data. Pretrained transformers' variant is used to encode log sequences for learning the structure along with anomaly types.…”

Section: Related Workmentioning

confidence: 99%

Reinforced Transformer Learning for VSI-DDoS Detection in Edge Clouds

Bhutto

Elmroth

et al. 2022

IEEE Access

View full text Add to dashboard Cite

Edge-driven software applications often deployed as online services in the cloud-to-edge continuum lack significant protection for services and infrastructures against emerging cyberattacks. Very-Short Intermittent Distributed Denial of Service (VSI-DDoS) attack is one of the biggest factor for diminishing the Quality of Services (QoS) and Quality of Experiences (QoE) for users on edge. Unlike conventional DDoS attacks, these attacks live for a very short time (on the order of a few milliseconds) in the traffic to deceive users with a legitimate service experience. To provide protection, we propose a novel and efficient approach for detecting VSI-DDoS attacks using reinforced transformer learning that mitigates the tail latency and service availability problems in edge clouds. In the presence of attacks, the users' demand for availing ultra-low latency and high throughput services deployed on the edge, can never be met. Moreover, these attacks send very-short intermittent requests towards the target services that enforce longer delays in users' responses. The assimilation of transformer with deep reinforcement learning accelerates detection performance under adverse conditions by adapting the dynamic and the most discernible patterns of attacks (e.g., multiplicative temporal dependency, attack dynamism). The extensive experiments with testbed and benchmark datasets demonstrate that the proposed approach is suitable, effective, and efficient for detecting VSI-DDoS attacks in edge clouds. The results outperform state-of-the-art methods with 0.9%−3.2% higher accuracy in both datasets.

show abstract

Section: Related Workmentioning

confidence: 99%

Reinforced Transformer Learning for VSI-DDoS Detection in Edge Clouds

Bhutto

Elmroth

et al. 2022

IEEE Access

View full text Add to dashboard Cite

show abstract

“…Traditional rule-based approaches have many challenges, including the difficulty of creating rules that can detect unforeseen error conditions and the effort required to manually maintain rule sets. Advances in deep learning and anomaly detection methodologies show potential for practical use against many forms of log detection targets, including failures [1], security/network intrusions [2] [3] [4], and performance degradation indicators [5] [6]. These methods have the potential to improve upon the weaknesses of rule-based approaches in that they don't require manual rule creation or maintenance.…”

Section: Introductionmentioning

confidence: 99%

Landscape and Taxonomy of Online Parser-Supported Log Anomaly Detection Methods

Lupton,

Washizaki,

Yoshioka

et al. 2024

IEEE Access

View full text Add to dashboard Cite

As production system estates become larger and more complex, ensuring stability through traditional monitoring approaches becomes more challenging. Rule-based monitoring is common in industrial settings, but it has limitations. These include the difficulty of crafting rules capable of detecting unforeseen issues and the burden of manually maintaining rule sets. A potential solution to effectively manage complex system states is log anomaly detection. Workflows for log anomaly detection utilize several fundamental components. These include preprocessors for data cleansing, parsers to extract structured information from raw log data, encoding algorithms to convert extracted data into usable model input features, anomaly detection methods to isolate anomalous signals, and feedback mechanisms to incrementally improve model performance. This study explores the current state of research into online parser-supported log anomaly detection methods, investigates recent research trends, compares the performances of parser and anomaly detection methods using common public datasets and metrics, and assesses their performance evolution over time. Additionally, it classifies available methods using a newly introduced taxonomy, highlights current research gaps, and recommends future research directions.INDEX TERMS Log parsing, log template extraction, online algorithms, anomaly detection.

show abstract