From: 2024-06-03 13:00 to 14:00
Place: Seminar Room M 3170-73 at Dept. of Automatic Control, LTH
Contact: johan [dot] eker [at] control [dot] lth [dot] se

Date & Time: June 3rd, 13:00-14:00
Location: Seminar Room M 3170-73 at Dept. of Automatic Control, LTH
Author: Linus Särud, Johan Sundin
Title: AI-driven Log Analysis for Intrusion Detection
Supervisor: Johan Eker, LTH,  Fanny Söderlund, Ola Angelsmark
Examiner: Karl-Erik Årzén, LTH

Abstract:  Today's security systems generate system logs that contain information about important events such as intrusion attempts and hardware failures. However, the large volume of data makes manual analysis impractical. Instead, this thesis proposes a method of using AI for classification. Building on previous research, a transformer model has been integrated with a hyper-spherical loss function and a Large Language Model (LLM). This combination handles the context of new logs and enhances the detection of anomalies. In collaboration with Advenica, the work contributes to the cybersecurity field by creating an improved model with better accuracy than previous approaches.