SSLA: a semi-supervised framework for real-time injection detection and anomaly monitoring in cloud-based web applications with real-world implementation and evaluation

Abstract

Injection attacks and anomalies pose significant threats to the security and reliability of cloud-based web applications. Traditional detection methods, such as rule-based systems and supervised learning techniques, often struggle to adapt to evolving threats and large-scale, unstructured log data. This paper introduces a novel framework, the Semi-Supervised Log Analyzer (SSLA), designed for real-time injection detection and anomaly monitoring in cloud environments. SSLA uses semi-supervised learning to utilize both labeled and unlabeled data, reducing the reliance on extensive annotated datasets. A similarity graph is built from the log data, allowing for effective anomaly detection using graph-based methods. At the same time, privacy-preserving techniques are integrated to protect sensitive information. The proposed method is evaluated on large-scale datasets, including Hadoop Distributed File System (HDFS) and BlueGene/L (BGL) logs, demonstrating superior performance in terms of precision, recall, and scalability compared to state-of-the-art methods. SSLA achieves high detection accuracy with minimal computational overhead, ensuring reliable, real-time protection for cloud-based web applications.

Details

Subject

Machine learning;
Datasets;
Data integrity;
User behavior;
Applications programs;
Cloud computing;
Graph representations;
Real time;
Quality of service;
Methods;
Unstructured data;
Semi-supervised learning;
Anomalies;
Privacy;
Monitoring;
Efficiency

Business indexing term

Subject:

Machine learning;
User behavior;
Quality of service

Identifier / keyword

KeywordsAnomaly detection; Cloud computing; Web applications; Semi-Supervised framework; Information and Computing Sciences; Artificial Intelligence and Image Processing; Information Systems

Title

SSLA: a semi-supervised framework for real-time injection detection and anomaly monitoring in cloud-based web applications with real-world implementation and evaluation

Author

Sefati, Seyed Salar¹; Arasteh, Bahman²; Fratu, Octavian³; Halunga, Simona³

¹ National University of Science and Technology POLITEHNICA Bucharest, Telecommunications Department, Faculty of Electronics, Telecommunications and Information Technology, Bucharest, Romania (GRID:grid.4551.5) (ISNI:0000 0001 2109 901X); Research Center Campus, POLITEHNICA Bucharest, Bucharest, Romania (GRID:grid.4551.5) (ISNI:0000 0001 2109 901X); Faculty of Engineering and Natural Science, Istinye University, Department of Software Engineering, Istanbul, Türkiye (GRID:grid.508740.e) (ISNI:0000 0004 5936 1556)
² Faculty of Engineering and Natural Science, Istinye University, Department of Software Engineering, Istanbul, Türkiye (GRID:grid.508740.e) (ISNI:0000 0004 5936 1556); Khazar University, Department of Computer Science, Baku, Azerbaijan (GRID:grid.442897.4) (ISNI:0000 0001 0743 1899); Applied Science Research Center, Applied Science Private University, Amman, Jordan (GRID:grid.411423.1) (ISNI:0000 0004 0622 534X)
³ National University of Science and Technology POLITEHNICA Bucharest, Telecommunications Department, Faculty of Electronics, Telecommunications and Information Technology, Bucharest, Romania (GRID:grid.4551.5) (ISNI:0000 0001 2109 901X); Research Center Campus, POLITEHNICA Bucharest, Bucharest, Romania (GRID:grid.4551.5) (ISNI:0000 0001 2109 901X); Academy of Romanian Scientists, Bucharest, Romania (GRID:grid.435118.a) (ISNI:0000 0004 6041 6841)

Publication title

Journal of Cloud Computing; Heidelberg

Volume

Issue

Pages

Publication year

2025

Publication date

Dec 2025

Publisher

Springer Nature B.V.

Place of publication

Heidelberg

Country of publication

Netherlands

Publication subject

Computers

e-ISSN

2192113X

Source type

Scholarly Journal

Language of publication

English

Document type

Journal Article

Publication history

Online publication date

2025-07-16

Milestone dates

2025-06-11 (Registration); 2025-02-10 (Received); 2025-06-11 (Accepted)

Publication history

First posting date

16 Jul 2025

DOI

https://doi.org/10.1186/s13677-025-00765-6

ProQuest document ID

3230618643

Document URL

https://www.proquest.com/scholarly-journals/ssla-semi-supervised-framework-real-time/docview/3230618643/se-2?accountid=208611

© The Author(s) 2025. This work is published under http://creativecommons.org/licenses/by-nc-nd/4.0/ (the “License”). Notwithstanding the ProQuest Terms and Conditions, you may use this content in accordance with the terms of the License.

Last updated

2025-07-17

Database

ProQuest One Academic

SSLA: a semi-supervised framework for real-time injection detection and anomaly monitoring in cloud-based web applications with real-world implementation and evaluation

Content area

Abstract

Details