ethodology and classification of open-source ML methods for IT monitoring based on the Zabbix system

Authors

  • Ігор Вадимович МАРТИНЮК Державний науково-дослідний інститут технологій кібербезпеки та захисту інформації https://orcid.org/0009-0003-5565-0828
  • Тетяна Олександрівна ОХРІМЕНКО Державний університет "Київський авіаційний інститут" https://orcid.org/0000-0001-9036-6556

DOI:

https://doi.org/10.18372/2225-5036.31.20700

Keywords:

cybersecurity, information technology, IT-monitoring, Zabbix, machine learning, ML models, anomaly detection, forecasting, log analysis

Abstract

In this paper examined the use of open-source machine learning methods for IT monitoring tasks based on the Zabbix system. Analyzed approaches to anomaly detection, time series forecasting, and log file analysis, as well as their limitations in the context of operational monitoring. Proposed a methodology for integrating external ML modules with Zabbix and a classification scheme for using ML models depending on the type of data and needed tasks. Performed a comparative analysis of ML approaches and formulated recommendations for their practical application, taking into account the requirements for achieving the target service level (SLO).

Downloads

Published

2025-08-22

Issue

Vol. 31 No. 2 (2025): Ukrainian Scientific Journal of Information Security

Section

Cybersecurity & Critical Information Infrastructure Protection (CIIP)