A Comprehensive Survey of Event Analytics

A Comprehensive Survey of Event Analytics

T. Gidwani (AUT University, New Zealand), M. J. Argano (AUT University, New Zealand), W. Yan (AUT University, New Zealand) and F. Issa (AUT University, New Zealand)
DOI: 10.4018/978-1-4666-4006-1.ch012
OnDemand PDF Download:
List Price: $37.50


Analytics has emerged as an important area of study as it avoids further incidents or risks after the events have occurred; this is done by analysing computer events and making further statistics. The purpose of this survey is to gain knowledge for the authors’ own event knowledge database which will consist of how unusual events work and how they are related to other events. The algorithms mentioned in this paper have been used to build their future development, resulting in a knowledge database designed to be similar to an internet browser engine where it can search events and their relationships. The research and algorithms have helped the authors to decide on the technology they will be using for the knowledge database.
Chapter Preview

1. Introduction

An event is an occurrence within a computer system that converses with other systems or users. Computer and network systems contain event logs that holds enormous amount of data. These event logs hold records of any behaviors or actions a network device performs. Events may also involve illegal activities such as malicious attacks or unexpected data movement. The plan is to assemble these events and to examine their relationships with research and recording each activity into a knowledge database. This information will help avoid further incidents or risks after events have occurred.

Event analytics is a complex scheme therefore we have created subcategories for our research. We divided this into four major components: computer event surveillance, computer event monitoring, computer event forensic and computer event security. In this paper, we have combined computer event surveillance and computer event monitoring together and computer event forensic and computer event security together shown on Figure 1. An extensive research was conducted throughout these subcategories. We have selected the articles written by professionals in their respected fields.

Figure 1.

Structure of event analytics

This paper will be divided into four sections: Section 2 will be on state of the arts, which is the highest level of development or technique at this time, a range or systems and techniques will be introduced here. Section 3 will be on existing systems and algorithms. The last section will then be the conclusion that will encapsulate our insights on what was useful and what we have learnt from this research.


2. The State Of The Arts

This section covers the highest level of development of computer analytics; it includes topics such as computer surveillance systems, computer forensic events, monitoring events and network events security related methodologies, which are currently being employed. This section contains up to date ideas and knowledge of computer analytics, which can help to make advancements in already existing methodologies.

Complete Chapter List

Search this Book: