The SLOGERT Framework for Automated Log Knowledge Graph Construction

Ekelhart, Andreas ORCID: https://orcid.org/0000-0003-3682-1364 and Ekaputra, Fajar J ORCID: https://orcid.org/0000-0003-4569-2496 and Kiesling, Elmar ORCID: https://orcid.org/0000-0002-7856-2113 (2021) The SLOGERT Framework for Automated Log Knowledge Graph Construction. In: European Semantic Web Conference, June 6-10, 2021, Online.

[img]
Preview
Text
_ESWC21___Log_Knowledge_Graphs.pdf
Available under License Creative Commons: Attribution 4.0 International (CC BY 4.0).

Download (697kB) | Preview

Abstract

Log files are a vital source of information for keeping systems running and healthy. However, analyzing raw log data, i.e., textual records of system events, typically involves tedious searching for and inspecting clues, as well as tracing and correlating them across log sources. Existing log management solutions ease this process with efficient data collection, storage, and normalization mechanisms, but identifying and linking entities across log sources and enriching them with background knowledge is largely an unresolved challenge. To facilitate a knowledge-based approach to log analysis, this paper introduces SLOGERT, a flexible framework and workflow for automated construction of knowledge graphs from arbitrary raw log messages. At its core, it automatically identifies rich RDF graph modelling patterns to represent types of events and extracted parameters that appear in a log stream. We present the workflow, the developed vocabularies for log integration, and our prototypical implementation. To demonstrate the viability of this approach, we conduct a performance analysis and illustrate its application on a large public log dataset in the security domain.

Item Type: Conference or Workshop Item (Paper)
Version of the Document: Accepted for Publication
Variance from Published Version: None
Depositing User: Elmar Kiesling
Date Deposited: 28 Dec 2021 10:48
Last Modified: 28 Dec 2021 10:48
URI: https://epub.wu.ac.at/id/eprint/8483

Actions

View Item View Item

Downloads

Downloads per month over past year

View more statistics