Designing an Enhanced LSTM – XGBoost Architecture for Context-Oriented Anomaly Detection in Event Logs (CPU-based)

Authors

  • Dmytro Hnatiuk postgraduate

DOI:

https://doi.org/10.31713/MCIT.2025.025

Keywords:

Anomaly Detection in Event Logs, LSTM, XGBoost, CPU Optimization and Adaptive Thresholds

Abstract

Traditional IT infrastructure monitoring systems do not account for contextual relationships between events in log files, which leads to a high rate of false positives (up to 60–80%). This work proposes an innovative hybrid architecture that combines semantic understanding of event sequences (LSTM) with the classification accuracy of tabular models (XGBoost). The main idea is to create a “semantic fingerprint” of the event history for each service. The expected experimental results are anticipated to demonstrate an improvement in the F1 score by 15–25% while maintaining a low latency of less than 50 ms when running exclusively on CPU.

Downloads

Published

2025-11-06

How to Cite

Hnatiuk, D. (2025). Designing an Enhanced LSTM – XGBoost Architecture for Context-Oriented Anomaly Detection in Event Logs (CPU-based). Modeling, Control and Information Technologies, (8), 88–90. https://doi.org/10.31713/MCIT.2025.025

Issue

No. 8 (2025): Modeling, control and information technologies

Section

Power engineering and renewable energy sources

License

Copyright (c) 2025 Modeling, Control and Information Technologies: Proceedings of International scientific and practical conference

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 International License.

All materials are distributed under the terms of the Creative Commons Attribution 4.0 International License, which allows others to distribute the work with attribution to the authorship of this work and the first publication in this journal.