ASE 2023
Mon 11 - Fri 15 September 2023 Kirchberg, Luxembourg

Logs are prevalent in modern cloud systems and serve as a valuable source of information for system maintenance. Over the years, a lot of research and industrial efforts have been devoted to the field of log-based anomaly detection. Through analyzing the limitations of existing approaches, we find that most of them still suffer from practical issues and are thus hard to be applied in real-world scenarios. For example, supervised approaches are dependent on a large amount of labeled log data for training, which can require much manual labeling effort. Besides, log instability, which is a pervasive issue in real-world systems, poses great challenge to existing methods, especially under the presence of many dissimilar new log events. To overcome these problems, we propose LogOnline, which is a semi supervised anomaly detector aided with online learning mechanism. The semi-supervised nature of LogOnline makes it able to get rid of the erroneous and time-consuming manual labeling of log data. Based on our proposed online learning mechanism, LogOnline can learn the normal sequence patterns continuously as new log sequences emerge, thus staying robust to unstable log data. Unlike previous works, the proposed online learning mechanism requires no labeled log data nor human intervention in the process. We have evaluated LogOnline on two widely used public datasets, and the experimental results demonstrate the effectiveness of LogOnline. In particular, LogOnline achieves a comparable result with the studied supervised approaches, outperforming all semi-supervised counterparts. When the log instability issue is more common, LogOnline exhibits the best performance over all compared approaches, further confirming its practicability.

Tue 12 Sep

Displayed time zone: Amsterdam, Berlin, Bern, Rome, Stockholm, Vienna change

10:30 - 12:00
Infrastructure, Build, and LogsResearch Papers / Industry Showcase (Papers) / NIER Track / Journal-first Papers at Room D
Chair(s): Fatemeh Hendijani Fard University of British Columbia, Arie van Deursen Delft University of Technology
10:30
12m
Talk
Are They All Good? Studying Practitioners' Expectations on the Readability of Log Messages
Research Papers
Zhenhao Li Concordia University, An Ran Chen University of Alberta, Xing Hu Zhejiang University, Xin Xia Huawei Technologies, Tse-Hsun (Peter) Chen Concordia University, Weiyi Shang University of Waterloo
Pre-print
10:42
12m
Talk
Log Parsing: How Far Can ChatGPT Go?
NIER Track
Van-Hoang Le The University of Newcastle, Hongyu Zhang Chongqing University
Pre-print
10:54
12m
Talk
On the usage, co-usage and migration of CI/CD tools: a qualitative analysis
Journal-first Papers
Pooya Rostami Mazrae University of Mons, Tom Mens University of Mons
11:06
12m
Talk
Predicting Compilation Resources for Adaptive Build in an Industrial Setting
Industry Showcase (Papers)
Junhao Hu Peking University, Chaozheng Wang The Chinese University of Hong Kong, Hailiang Huang Tencent Inc., Huang Luo Tencent Inc., Yu Jin Tencent Inc., Yuetang Deng Tencent, Tao Xie Peking University
11:30
12m
Talk
What Quality Aspects Influence the Adoption of Docker Images?
Journal-first Papers
Giovanni Rosa University of Molise, Simone Scalabrino University of Molise, Gabriele Bavota Software Institute, USI Università della Svizzera italiana, Rocco Oliveto University of Molise
Link to publication Media Attached
11:42
12m
Talk
LogOnline: A Semi-supervised Log-based Anomaly Detector Aided with Online Learning MechanismRecorded talk
Research Papers
Xuheng Wang Tsinghua University, Jiaxing Song Tsinghua University, Xu Zhang Microsoft Research, Junshu Tang Shanghai Jiao Tong University, Weihe Gao Tsinghua University, Qingwei Lin Microsoft, Xuheng Wang Tsinghua University
Link to publication DOI Media Attached