Filtering Alerts on Cloud Monitoring Systems

2023 IEEE International Conference on Joint Cloud Computing (JCC) Pub Date : 2023-07-01 DOI:10.1109/JCC59055.2023.00010

Fotios Voutsas, John Violos, Aris Leivadeas

{"title":"Filtering Alerts on Cloud Monitoring Systems","authors":"Fotios Voutsas, John Violos, Aris Leivadeas","doi":"10.1109/JCC59055.2023.00010","DOIUrl":null,"url":null,"abstract":"Recent advances in cloud computing and data centers have increased the demands for monitoring the network infrastructure and the applications that it hosts. The monitoring processes let network administrators to be aware of the status of the physical and logical units that compose their system. Since the goal of next generation networks is to minimise the administrators’ intervention, the alerting systems should minimize the frequency of notifications, emphasizing on critical scenarios such as when a monitoring metric surpasses a threshold or an anomalous behaviour is detected. However, current monitoring tools flood network administrators with hundreds of notifications every day. In this paper, we propose a binary classification approach, in order to decide if the administrators should be notified through monitoring alerts or not. To do so, our framework is build upon real monitoring logs and alerts, that show how the administrators reacted when receiving an alert. Extensive simulation results assess the performance of various classification approaches and reveal that random forests are great candidates for the binary classification alerting system that we propose, in terms of classification efficiency and computational overhead.","PeriodicalId":117254,"journal":{"name":"2023 IEEE International Conference on Joint Cloud Computing (JCC)","volume":"326 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2023-07-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2023 IEEE International Conference on Joint Cloud Computing (JCC)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/JCC59055.2023.00010","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Recent advances in cloud computing and data centers have increased the demands for monitoring the network infrastructure and the applications that it hosts. The monitoring processes let network administrators to be aware of the status of the physical and logical units that compose their system. Since the goal of next generation networks is to minimise the administrators’ intervention, the alerting systems should minimize the frequency of notifications, emphasizing on critical scenarios such as when a monitoring metric surpasses a threshold or an anomalous behaviour is detected. However, current monitoring tools flood network administrators with hundreds of notifications every day. In this paper, we propose a binary classification approach, in order to decide if the administrators should be notified through monitoring alerts or not. To do so, our framework is build upon real monitoring logs and alerts, that show how the administrators reacted when receiving an alert. Extensive simulation results assess the performance of various classification approaches and reveal that random forests are great candidates for the binary classification alerting system that we propose, in terms of classification efficiency and computational overhead.

查看原文本刊更多论文

过滤云监控系统上的警报

云计算和数据中心的最新进展增加了对监控网络基础设施及其托管的应用程序的需求。监视过程使网络管理员能够了解组成系统的物理和逻辑单元的状态。由于下一代网络的目标是尽量减少管理员的干预，警报系统应该尽量减少通知的频率，强调关键情况，例如当监测指标超过阈值或检测到异常行为时。然而，当前的监控工具每天都会向网络管理员发送数百条通知。在本文中，我们提出了一种二元分类方法，以确定是否应该通过监视警报通知管理员。为此，我们的框架建立在真实的监视日志和警报之上，这些日志和警报显示了管理员在接收警报时的反应。大量的仿真结果评估了各种分类方法的性能，并揭示了随机森林在分类效率和计算开销方面是我们提出的二元分类警报系统的很好的候选者。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2023 IEEE International Conference on Joint Cloud Computing (JCC)

自引率

0.00%

发文量