Paper Detail

DP-FlogTinyLLM: Differentially private federated log anomaly detection using Tiny LLMs

Isaiah Thompson, Tanmay Sen, Ritwik Bhattacharya

Browse

Workflow Queues

arxiv Score 5.3

Published 2026-04-21 · First seen 2026-04-22

General AI

Open paper source

Abstract

Modern distributed systems generate massive volumes of log data that are critical for detecting anomalies and cyber threats. However, in real world settings, these logs are often distributed across multiple organizations and cannot be centralized due to privacy and security constraints. Existing log anomaly detection methods, including recent large language model (LLM) based approaches, largely rely on centralized training and are not suitable for such environments. In this paper, we propose DP-FLogTinyLLM, a privacy preserving federated framework for log anomaly detection using parameter efficient LLMs. Our approach enables collaborative learning without sharing raw log data by integrating federated optimization with differential privacy. To ensure scalability in resource constrained environments, we employ low rank adaptation (LoRA) for efficient fine tuning of Tiny LLMs at each client. Empirical results on the Thunderbird and BGL datasets show that the proposed framework matches the performance of centralized LLM based methods, while incurring additional computational overhead due to privacy mechanisms. Compared to existing federated baselines, DP-FLogTinyLLM consistently achieves higher precision and F1-score, with particularly strong gains on the Thunderbird dataset, highlighting its effectiveness in detecting anomalies while minimizing false positives.

Workflow Status

Review status
pending
Role
unreviewed
Read priority
soon
Vote
Not set.
Saved
no
Collections
Not filed yet.
Next action
Not filled yet.

Reading Brief

No structured notes yet. Add `summary_sections`, `why_relevant`, `claim_impact`, or `next_action` in `papers.jsonl` to enrich this view.

Why It Surfaced

No ranking explanation is available yet.

Tags

No tags.

Similar Papers

AD4AD: Benchmarking Visual Anomaly Detection Models for Safer Autonomous Driving 2026-04-16 · Score 10.3 General AI Continual Visual Anomaly Detection on the Edge: Benchmark and Efficient Solutions 2026-04-07 · Score 16.5 Research Track A · General AI Private Speech Classification without Collapse: Stabilized DP Training and Offline Distillation 2026-05-04 · Score 5.2 General AI Back to Repair: A Minimal Denoising Network\ for Time Series Anomaly Detection 2026-04-19 · Score 4.5 General AI EdgeDetect: Importance-Aware Gradient Compression with Homomorphic Aggregation for Federated Intrusion Detection 2026-04-16 · Score 4.5 General AI

BibTeX

@article{thompson2026dp,
  title = {DP-FlogTinyLLM: Differentially private federated log anomaly detection using Tiny LLMs},
  author = {Isaiah Thompson and Tanmay Sen and Ritwik Bhattacharya},
  year = {2026},
  abstract = {Modern distributed systems generate massive volumes of log data that are critical for detecting anomalies and cyber threats. However, in real world settings, these logs are often distributed across multiple organizations and cannot be centralized due to privacy and security constraints. Existing log anomaly detection methods, including recent large language model (LLM) based approaches, largely rely on centralized training and are not suitable for such environments. In this paper, we propose DP-},
  url = {https://arxiv.org/abs/2604.19118},
  keywords = {cs.CR, cs.AI},
  eprint = {2604.19118},
  archiveprefix = {arXiv},
}

Metadata

{}