Title:
LOG ANALYSIS APPARATUS, LOG ANALYSIS METHOD, AND LOG ANALYSIS PROGRAM
Document Type and Number:
WIPO Patent Application WO/2018/159362
Kind Code:
A1
Abstract:
A log analysis apparatus (10) extracts a parameter from an access log concerning a request from a user terminal to a server, learns the appearance frequency of the parameter, and stores the learned result as a profile in a profile storage unit (14a). The log analysis apparatus (10) extracts a parameter from an access log to be analyzed, determines the similarity by comparing the parameter with that in the profile stored in the profile storage unit (14a), and determines that access to the access log to be analyzed is an attack when the similarity is lower than a threshold value. The log analysis apparatus (10) adds up the number of types of user terminals, which are request sources, for each parameter in the access log to be analyzed which has no parameter in the profile or which has a similarity lower than the threshold value, and determines that parameter relearning is to be carried out when there is a parameter in which the number of types of user terminals is equal to or higher than a threshold value.
Inventors:
ORIHARA SHINGO (JP)
SATO TOHRU (JP)
SHIMADA YOHSUKE (JP)
IWAKI YUTA (JP)
ZHONG YANG (JP)
SATO TOHRU (JP)
SHIMADA YOHSUKE (JP)
IWAKI YUTA (JP)
ZHONG YANG (JP)
Application Number:
PCT/JP2018/005773
Publication Date:
September 07, 2018
Filing Date:
February 19, 2018
Export Citation:
Assignee:
NIPPON TELEGRAPH & TELEPHONE (JP)
International Classes:
G06F21/55; H04L12/66; H04L12/70
Domestic Patent References:
| WO2015186662A1 | 2015-12-10 |
Foreign References:
| JP2010152431A | 2010-07-08 | |||
| JP2016505984A | 2016-02-25 |
Attorney, Agent or Firm:
SAKAI INTERNATIONAL PATENT OFFICE (JP)
Download PDF: