A log anomaly detection method and system based on course open set domain adaptation
By employing a log anomaly detection method that incorporates source domain noise self-cleaning, course transfer, and LLM semantic enhancement, we have addressed the issues of noise interference, target domain adaptability, and open set identification in transfer learning, achieving high-precision log detection and proactive defense.
Patent Information
- Authority / Receiving Office
- CN · China
- Patent Type
- Applications(China)
- Current Assignee / Owner
- UNIV OF ELECTRONICS SCI & TECH OF CHINA
- Filing Date
- 2026-03-20
- Publication Date
- 2026-06-19
AI Technical Summary
Existing log detection methods based on transfer learning suffer from problems such as severe noise interference in the source domain, difficulty in adapting to cold starts in the target domain, and insufficient ability to identify unknown attacks and logical overreach behaviors in open sets.
By employing source domain noise self-stepping cleaning, a course transfer strategy based on optimal transmission, open set feature compaction, and large language model (LLM) semantic logic enhancement, a log anomaly detection model is constructed to achieve smooth alignment and accurate detection of target domain log features.
It significantly improves the accuracy and proactive defense of the log auditing system, effectively identifies and blocks unauthorized access and misleading content, has noise resistance and unknown threat awareness capabilities, and enables continuous iteration of defense capabilities.
Smart Images

Figure FT_1 
Figure FT_2 
Figure SMS_15