processing data streams an incomplete tutorial
play

Processing Data Streams: An (Incomplete) Tutorial Johannes Gehrke - PDF document

Jan 19, 2024 •132 likes •898 views

Processing Data Streams: An (Incomplete) Tutorial Johannes Gehrke Department of Computer Science johannes@cs.cornell.edu http://www.cs.cornell.edu Standard Pub/Sub Publish/subscribe (pub/sub) is a powerful paradigm Publishers generate

  1. Processing Data Streams: An (Incomplete) Tutorial Johannes Gehrke Department of Computer Science johannes@cs.cornell.edu http://www.cs.cornell.edu Standard Pub/Sub � Publish/subscribe (pub/sub) is a powerful paradigm � Publishers generate data � Events, publications � Subscribers describe interests in publications � Queries, subscriptions � Asynchronous communication � Decoupling of publishers and subscribers � Much commercial software … 1

  2. Limitation of Standard Pub/Sub � Scalable implementations have very simple query languages � Simple predicates, comparing message attributes to constants � E.g., topic= ‘ politics ’ AND author= ‘ J. Doe ’ � Individual events vs. event sequences � Many monitoring applications need sequence patterns � Stock tickers, RSS feeds, network monitoring, sensor data monitoring, fraud detection, etc. Example: RSS Feed Monitoring � Once CNN.com posts an article on Technology, send me the first post referencing (i.e., containing a link to) this article from the blogs to which I subscribe � Send postings from all blogs to which I subscribe, in which the first posting is a reference to a sensitive site XYZ, and each later posting is a reference to the previous. 2

  3. Example: System Event Log Monitoring � In the past 60 seconds, has the number of failed logins (security logs) increased by more than 5? (break-in attempt) � Have there been any failed connections in the past 15 minutes? If yes, is the rate increasing? � Have there been any disk errors in the past 30 minutes? If yes, is the rate increasing? (failed disk indicator) � Have there been any critical errors (those added to the dbase table to monitor by administrators) in the past 10 minutes? Example: Stock Monitoring � Notify me when the price of IBM is above $83, and the first MSFT price afterwards is below $27. � Notify me when some stock goes up by at least 5% from one transaction to the next. � Notify me when the price of any stock increases monotonically for ≥ 30 min. � Notify me when the next IBM stock is above its 52-week average. 3

  4. Linear Road Benchmark Linear City � 100x100 miles � 10 parallel expressways, 100 segments each � Each expressway has 4 lanes in each direction � 3 travel lanes � 1 entry/exit lane � Vehicles with sensors that report their position Figure from Linear Road: A Stream Data Management Benchmark, VLDB 2004 Linear Road Benchmark (2) � Vehicle: � Begins at some segment and exists at some segments � Reports its position every 30 seconds � Vehicle speed is set such that: � One report from entrance and exit ramps � At least one report from each segment � One accident every 20 minutes � Reduced speed in that segment � Takes 10-20 minutes to clear out the accident 4

  5. Linear Road Benchmark (3) Figure from Linear Road: A Stream Data Management Benchmark, VLDB 2004 Linear Road Benchmark (4) � Streams: � Position reports � Historical query requests: � Account balances � Daily expenditures � Travel time estimation 5

  6. Linear Road Benchmark (5) � Benchmark requirements: � Compute tolls every time a position is reported � Toll notification at every position update � Toll assessment at every segment crossing � Accident detection � Four consecutive identical position reports � Accident notification: If there is an accident in a segment, notify all incoming vehicles of the accident � Historical queries � Account balance � Daily expenditure � Travel time estimation Linear Road Benchmark (6) � System achieves L-Rating � Maximum scale factor at which the system meets response time and accuracy requirements � Example of DSMS versus dinosaur system: Response time Expressways X Aurora 0.5 3 1 1 2031 1 1.5 ~16000 1 2 ~52000 2 6

  7. Solutions? � Traditional pub/sub � Scalable, but not expressive enough � Database Management System � Static datasets � One-shot queries � Triggers � Data Stream Management Systems � Event Processing Systems Real-Time DSP Requirements (1) Support a high-level “StreamSQL” language (2) Deal with out-of-order data (3) Generate predictable and repeatable outcomes (4) Integrate well with static data (5) Fault-tolerance (6) Scale with hardware resources (7) Low latency � process data as it streams by (“in-stream processing”); no requirement to store data first 7

  8. Tutorial Outline � Basics � How to model time � Data stream query languages and processing models � STREAM and CQL � Cayuga � Fault tolerance � New operators � Change detection � Burst detection � A Case Study Caveat � To trade breadth for some depth, this tutorial ignores many important topics among them: � In-depth discussion of applications � Query processing � Heartbeats � Query optimization � Query rewrite � Access methods � XML � Theoretical results on the language side 8

  9. Tutorial Outline � Basics � How to model time � Data stream query languages and processing models � Fault tolerance � New operators � A Case Study The Data Stream Model 1) A stream is a bag of 1) A relation is a set of tuples with a partial order tuples 2) Streams need to be 2) Relations are persistent processed in real time as tuples arrive 3) Interactive queries 3) Continuous queries 4) Random access to data, 4) Sequential access to queries need to be data, random access to processed as they arrive continuous queries 5) Physical database design 5) Queries do not change, does not change during stream can be very query, queries can be unpredictable unpredictable Slide based on material from Jennifer Widom. 9

  10. Comparison of Stream Systems Number of concurrent queries Few Many Low Publish/ ☺ subscribe Complexity of queries High DSMS CEP Tutorial Outline � Basics � How to model time � Data stream query languages and processing models � Fault tolerance � New operators � A Case Study 10

  11. Temporal Model � Questions: � How are timestamps defined? � What is the timestamp of an output record? � Approaches: � Point timestamps � Interval timestamps � Surprises like E1;(E2;E3)=E2;(E1;E3)? Imperfections in Event Streaming Slide courtesy of Mingsheng Hong. 11

  12. Imperfections in Event Streaming Network imperfections: Tuples are late and/or out of order Slide courtesy of Mingsheng Hong. Imperfections in Event Streaming Stream source retractions: A tuple is retracted after it is streamed on the wire Item X, Qty Q, Value, V Item X, Qty Q, Value, V Slide courtesy of Mingsheng Hong. 12

  13. Consistency Requirements � Imperfections in streaming environments � Out of order delivery � Retractions � Current approaches � Conservative approach: buffer incoming events to re-establish temporal ordering � Best-effort approach: can allow to drop late events � Consistency levels � User: s pecify consistency requirements on a per query basis � System: m anage resources to uphold the consistency guarantees � Tradeoffs � Output quality and size � System responsiveness and cost Slide courtesy of Mingsheng Hong. Example Scenarios � Various continuous monitoring queries in financial markets � Scenario 1: queries running in compliance office to monitor trader activity and customer accounts, ensure conformity with SEC rules and institution guidelines � Requirements: process events in proper order to make accurate assessment (strong consistency) � Scenario 2: queries running in trading floors to extract events from news feeds and correlated with market indicators, impacting automated stock trading programs � Requirement: high responsiveness (low delay); can allow retraction on trading (middle consistency) � Scenario 3: queries running on a trader ’ s desktop to track a moving average of the value of a an investment portfolio � Requirement: high responsiveness; does not require perfect accuracy (weak consistency) Slide courtesy of Mingsheng Hong. 13

  14. Key Insight � Optimistic query processing provides a spectrum of consistency levels Slide courtesy of Mingsheng Hong. Consistency Domain and Levels Blocking Late & conservative B Fast & optimistic Memory W Slide courtesy Cheap & Expensive & of Mingsheng less correct more correct Hong. 14

  15. Consistency Tradeoffs Blocking Memory Slide courtesy of Mingsheng Hong. Consistency Tradeoffs Quality of Output Strong Consistency Middle Consistency Non-Blocking Output Size Weak Consistency Slide courtesy of Mingsheng Hong. 15

  16. Consistency Tradeoffs Consistency Quality Blocking State Output (as specified by of Size Size user) Output High Yes High Low Strong Middle No High High Middle Low No Low Low Weak Slide courtesy of Mingsheng Hong. Bitemporal Stream Model � Temporal dimensions � Application time: event provider ’ s clock � Valid time, V s , V e � System time: CEDR server ’ s clock � CEDR time, C s � Example � [Insertion] A security token valid from 9am to 5pm arrives at CEDR server at 9:15am. � [Retraction] The same token is revoked at 4pm, and the revocation arrives at CEDR server at 4:10pm. Slide courtesy of Mingsheng Hong. 16

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Data Streams Tutorial Andrew McGregor University of Massachusetts, Amherst Data Stream Model

Data Streams Tutorial Andrew McGregor University of Massachusetts, Amherst Data Stream Model

Data Streams Tutorial Andrew McGregor University of Massachusetts, Amherst Data Stream Model [Morris 78] [Munro, Paterson 78] [Flajolet, Martin 85] [Alon, Matias, Szegedy 96] [Henzinger, Raghavan, Rajagopalan 98] Data Stream

1.6k views • 135 slides
Processing Complex Aggregate Queries over Data Streams SIGMOD 2002 Alin Dobra Minos Garofalakis

Processing Complex Aggregate Queries over Data Streams SIGMOD 2002 Alin Dobra Minos Garofalakis

Processing Complex Aggregate Queries over Data Streams SIGMOD 2002 Alin Dobra Minos Garofalakis Johannes Gehrke Rajeev Rastogi June 4, 2002 Processing Network Data Streams DataStream Join Query Network Operations Center SELECT COUNT(*)

407 views • 27 slides
Data Stream Processing Part I Motivation Data Streams Reservoir Sampling 1 Homework 1 is due

Data Stream Processing Part I Motivation Data Streams Reservoir Sampling 1 Homework 1 is due

Data Stream Processing Part I Motivation Data Streams Reservoir Sampling 1 Homework 1 is due this Friday the 20th of October Motivation Data Streams Reservoir Sampling 2 Data Processing so far ... Input Document Output Document

763 views • 57 slides
Data Stream Processing Part II Stream Windows Lossy Counting Sticky Sampling 1 Data Streams

Data Stream Processing Part II Stream Windows Lossy Counting Sticky Sampling 1 Data Streams

Data Stream Processing Part II Stream Windows Lossy Counting Sticky Sampling 1 Data Streams (recap) continuous, unbounded sequence of items unpredictable arrival times too large to store locally one pass real time processing required

866 views • 59 slides
Big Data for Data Science Data streams and low latency processing event.cwi.nl/lsde DATA STREAM

Big Data for Data Science Data streams and low latency processing event.cwi.nl/lsde DATA STREAM

Big Data for Data Science Data streams and low latency processing event.cwi.nl/lsde DATA STREAM BASICS event.cwi.nl/lsde2015 event.cwi.nl/lsde What is a data stream? Large data volume, likely structured, arriving at a very high rate

650 views • 64 slides
Querying and Mining Data Streams: Querying and Mining Data Streams: You Only Get One Look You

Querying and Mining Data Streams: Querying and Mining Data Streams: You Only Get One Look You

Querying and Mining Data Streams: Querying and Mining Data Streams: You Only Get One Look You Only Get One Look A Tutorial A Tutorial Minos Garofalakis Garofalakis Johannes Gehrke Johannes Gehrke Minos Rajeev Rastogi Rajeev

1.58k views • 125 slides
Data Streams Many large sources of data are generated as streams of updates: IP Network

Data Streams Many large sources of data are generated as streams of updates: IP Network

Summarizing and Mining Skewed Data Streams Graham Cormode cormode@bell-labs.com Flip Korn, S. Muthukrishnan, Divesh Srivastava Data Streams Many large sources of data are generated as streams of updates: IP Network traffic data Text:

485 views • 44 slides
Learning and Reasoning With Incomplete Data: Foundations and Algorithms Manfred Jaeger Machine

Learning and Reasoning With Incomplete Data: Foundations and Algorithms Manfred Jaeger Machine

Learning and Reasoning With Incomplete Data: Foundations and Algorithms Manfred Jaeger Machine Intelligence Group Aalborg University Tutorial UAI 2010 1 / 54 Outline Part 1: Coarsened At Random Introduction Coarse Data The CAR Assumption

539 views • 53 slides
Data Streams Many large sources of data are generated as streams of updates: IP Network

Data Streams Many large sources of data are generated as streams of updates: IP Network

Summarizing and Mining Skewed Data Streams Graham Cormode cormode@bell-labs.com S. Muthukrishnan muthu@cs.rutgers.edu Data Streams Many large sources of data are generated as streams of updates: IP Network traffic data Text: email/

535 views • 20 slides
Large-Scale Data Engineering Data streams and low latency processing event.cwi.nl/lsde2015 DATA

Large-Scale Data Engineering Data streams and low latency processing event.cwi.nl/lsde2015 DATA

Large-Scale Data Engineering Data streams and low latency processing event.cwi.nl/lsde2015 DATA STREAM BASICS event.cwi.nl/lsde2015 What is a data stream? Large data volume, likely structured, arriving at a very high rate Potentially

498 views • 38 slides
Efficient Processing of Massive Data Streams for Mining and Monitoring Mirek Riedewald

Efficient Processing of Massive Data Streams for Mining and Monitoring Mirek Riedewald

Efficient Processing of Massive Data Streams for Mining and Monitoring Mirek Riedewald Department of Computer Science Cornell University Acknowledgements Al Demers Abhinandan Das Alin Dobra Sasha Evfimievski Johannes Gehrke

559 views • 32 slides
Large-Scale Data Engineering Data streams and low latency processing event.cwi.nl/lsde DATA

Large-Scale Data Engineering Data streams and low latency processing event.cwi.nl/lsde DATA

Large-Scale Data Engineering Data streams and low latency processing event.cwi.nl/lsde DATA STREAM BASICS event.cwi.nl/lsde2015 event.cwi.nl/lsde What is a data stream? Large data volume, likely structured, arriving at a very high rate

959 views • 64 slides
Tutorial on Learning Class Imbalanced Data Streams Leandro L. Minku Shuo Wang Giacomo Boracchi

Tutorial on Learning Class Imbalanced Data Streams Leandro L. Minku Shuo Wang Giacomo Boracchi

Tutorial on Learning Class Imbalanced Data Streams Leandro L. Minku Shuo Wang Giacomo Boracchi University of Leicester University of Birmingham Politecnico di Milano Outline Background and motivation Problem formulation

1.4k views • 101 slides
Tutorial: Mining Massive Data Streams Michael Hahsler Lyle School of Engineering Southern

Tutorial: Mining Massive Data Streams Michael Hahsler Lyle School of Engineering Southern

Tutorial: Mining Massive Data Streams Michael Hahsler Lyle School of Engineering Southern Methodist University January 23, 2019 Michael Hahsler (SMU/Lyle) Data Stream Mining January 23, 2019 1 / 36 Table of Contents Introduction 1

1.5k views • 36 slides
Building Applications Tutorial Session for Trustworthy Data Analysis in the Cloud Andrey Brito

Building Applications Tutorial Session for Trustworthy Data Analysis in the Cloud Andrey Brito

ISSRE 2019 Building Applications Tutorial Session for Trustworthy Data Analysis in the Cloud Andrey Brito Andr Martin Lilia Sampaio Fbio Silva Security-aware data processing Part 1 Why secure data processing? 3 In 2019, companies

1.24k views • 69 slides
The Eight Requirements of Real- Time Stream Processing: STREAM vs Storm Presentation by: Alex

The Eight Requirements of Real- Time Stream Processing: STREAM vs Storm Presentation by: Alex

The Eight Requirements of Real- Time Stream Processing: STREAM vs Storm Presentation by: Alex Galakatos John Meehan Tianyu Qian Introduction to Streams Why streaming processing? Two ideas High-volume streams of real-time data

572 views • 42 slides
Peoples United Financial, Inc. (Exact name of registrant as specified in its charter) Delaware

Peoples United Financial, Inc. (Exact name of registrant as specified in its charter) Delaware

UNITED STATES SECURITIES AND EXCHANGE COMMISSION Washington, D.C. 20549 FORM 8-K CURRENT REPORT Pursuant to Section 13 or 15(d) of the Securities Exchange Act of 1934 Date of Report (Date of earliest event reported) April 24, 2020 (April 23,

806 views • 46 slides
Forum for Information Retrieval Evaluation Prasenjit Majumder DAIICT, Gandhinagar, India

Forum for Information Retrieval Evaluation Prasenjit Majumder DAIICT, Gandhinagar, India

Forum for Information Retrieval Evaluation Prasenjit Majumder DAIICT, Gandhinagar, India Dipasree Pal ISI, Kolkata, India (currently at U. Tampere, Finland) On behalf of the FIRE Team September 21, 2010 www.isical.ac.in/fire Overview

518 views • 16 slides
Lecture 4 JA V A (46-935) Somesh Jha 1 Inner Classes Flash bac k to the class. A

Lecture 4 JA V A (46-935) Somesh Jha 1 Inner Classes Flash bac k to the class. A

Lecture 4 JA V A (46-935) Somesh Jha 1 Inner Classes Flash bac k to the class. A bstr actT ermStructur e There w as a whic h SlowYieldV olObje ct computed: ( i = 0) Dierence b et w een and c

788 views • 51 slides
The Proxemic Display Sketch, design, implement and document via a portfolio a display whose

The Proxemic Display Sketch, design, implement and document via a portfolio a display whose

Project Three The Proxemic Display Sketch, design, implement and document via a portfolio a display whose contents react to the proximity of a person, and can be manipulated by gestures appropriate to that distance. Goal Create a proxemic

525 views • 11 slides
ZIGBEE SMART HOMES A HACKERS OPEN HOUSE ZIGBEE SMART HOMES TOBIAS ZILLNER ABOUT ME

ZIGBEE SMART HOMES A HACKERS OPEN HOUSE ZIGBEE SMART HOMES TOBIAS ZILLNER ABOUT ME

TOBIAS ZILLNER ZIGBEE SMART HOMES A HACKERS OPEN HOUSE ZIGBEE SMART HOMES TOBIAS ZILLNER ABOUT ME Senior IS Auditor @ Cognosec in Vienna Penetration Testing, Security Audits & Consulting IoT Security Research, Playing with

601 views • 56 slides
Tutorial: Development of Interactive Applications for Mobile Devices 7th International Conference

Tutorial: Development of Interactive Applications for Mobile Devices 7th International Conference

Tutorial: Development of Interactive Applications for Mobile Devices 7th International Conference on Human Computer Interaction with Mobile Devices and Services (Mobile HCI 2005) Enrico Rukzio (Media Informatics Group, University of Munich )

641 views • 24 slides
Learning to attach semantic metadata to Web Services Andreas He, Nicholas Kushmerick

Learning to attach semantic metadata to Web Services Andreas He, Nicholas Kushmerick

Learning to attach semantic metadata to Web Services Learning to attach semantic metadata to Web Services Learning to attach semantic metadata to Web Services Andreas He, Nicholas Kushmerick University College Dublin, Ireland {andreas.hess,

795 views • 43 slides
Craig Knoblock University of Southern California These slides are based in part on slides from

Craig Knoblock University of Southern California These slides are based in part on slides from

Craig Knoblock University of Southern California These slides are based in part on slides from Matt Michelson, Sheila Tejada, Misha Bilenko, Jose Luis Ambite, Claude Nanjo, and Steve Minton Craig Knoblock University of Southern California 1

919 views • 81 slides

More recommend