stad hd spatial temporal anomaly detection for
play

STAD-HD: Spatial Temporal Anomaly Detection for Heterogeneous Data - PowerPoint PPT Presentation

Feb 14, 2023 •128 likes •430 views

STAD-HD: Spatial Temporal Anomaly Detection for Heterogeneous Data through Visual Analytics Solution for 2016 VAST Challenge MC2 & MC3 Yu Zhang 1 , Guozheng Li 1 , Chufan Lai 1 , Qiangqiang Liu 1 , Shuai Chen 1 , Lu Feng 1 , Tangzhi Ye 1 ,

  1. STAD-HD: Spatial Temporal Anomaly Detection for Heterogeneous Data through Visual Analytics Solution for 2016 VAST Challenge MC2 & MC3 Yu Zhang 1 , Guozheng Li 1 , Chufan Lai 1 , Qiangqiang Liu 1 , Shuai Chen 1 , Lu Feng 1 , Tangzhi Ye 1 , Siming Chen 1 , Ren Zuo 1 , Zhuo Zhang 2 , Zhanyi Wang 2 , Xin Huang 2 , Fengchao Xu 2 , Li Yu 2 , Shunlong Zhang 2 , Qiusheng Li 2 , Xiaoru Yuan 1 1 Peking University and 2 Qihoo 360 Co. Ltd.

  2. Outline • Data description • System introduction • Cases • Conclusion 2

  3. Data description • GAStech company moved to a three-storey building • 125 employees • 41 energy zones vs. 23 prox zones • 14 days’ static data + 60 hours’ streaming data 3

  4. Data description • Building data • Energy zone (≤12 attributes) • Floor (≤11 attributes) • Building (16 attributes) • Prox data • Mobile sensor • Fixed sensors 4

  5. Data description • Prox data Prox zone Robot Prox card 5

  6. Data description • Prox data Prox-zone detection Robot detection Time: Accurate Time: Inaccurate Position: Inaccurate Position: Accurate 6

  7. Task • Typical patterns • Notable anomalies • Relationships between two types of data 7

  8. Task • Typical patterns • Notable anomalies • Relationships between two types of data • Design requirement: spatial and temporal filters 8

  9. Task • “Pattern” • “Anomaly” • Not well-defined 9

  10. Work flow 10

  11. Work flow • Two systems • System A (Labelling System) • Basic visualizations + labelling • Store insight of the data • System B (Analysis System) • Exploits the insight from system A to reduce the ambiguity of the tasks • Anomaly-detection as entrance 11

  12. System A: Time Series Interface Spatial filter Attribute filter 12

  13. Time Series Interface System A Insight 1: Curves in weekdays differs from that in weekends Insight 2: Periodical pattern in weekdays Anomaly detection metric: template of a weekday (show anomaly) System B 13

  14. System B: Time Series Interface Attribute filter Spatial filter Anomaly detection Temporal filter 14

  15. System B: Warning Stack • Store all the anomalies with the metadata <time, position, attribute> 15

  16. System A: Trajectory Interface All the defined labels Cross filters Labels of one trajectory 16

  17. Trajectory Interface System A Insight 1: Physically impossible events / suspicious events Design requirement 1: Give warnings (show anomaly) Insight 2: Meeting events Design requirement 2: Directly visualize the meeting (show pattern) System B 17

  18. Trajectory Interface Anomaly detection metric: 1. Move between zones that are not adjacent - Strong 2. Conflict between two trajectory data source - Strong 3. Staying in a zone that contains neither the office of System A the employee nor public area - Weak Insight 1: Physically impossible events / suspicious events Design requirement 1: Give warnings (show anomaly) Insight 2: Meeting events Design requirement 2: Directly visualize the meeting (show pattern) System B 18

  19. System B: Trajectory Interface Spatial filter Trajectory simulation Gantt chart 19

  20. System B: Trajectory Interface • Data source • Fixed prox sensor - spatial uncertainty • Mobile prox sensor - temporal uncertainty • Uncertainty reduction • Robot detection • Stay in office • Stay in public areas (e.g. meeting room) • Stay in the corridor 20

  21. System B: Streaming Data Interface 21

  22. System B: Streaming Data Interface Position-centric glyphs Attribute-centric glyphs Gantt Chart 22

  23. Case 1: Shifts 23

  24. Case 2: Meetings Information technology and engineering meet at Mtg/Training (2700) Facilities meet at Conf (2365) 24

  25. Case 3: Lost card Lost card used New card 25

  26. Case 4: Server Room down time Equipment power goes down Air temperature goes up Cooling setpoint goes up 26

  27. Conclusion • STAD-HD: twin systems for specifying and visualizing patterns and anomalies in heterogeneous dataset • Labelling System for insight + Analysis System for answers • Drawbacks • Labelling System cannot automatically generate insights • Transformation from insight to design requirements and finally to implementation is not automatic • Analysis System reports many false positives 27

  28. Acknowledgement • Funding • NSFC No. 61170204 • NSFC Key Project No. 61232012 • National Program on Key Basic Research Project (973 Program) No. 2015CB352500 • Reviewers • Anonymous Reviewers 28

  29. Thank You 29

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Anomaly Detection of Trajectories Junier B. Oliva Anomaly Detection An anomaly (or outlier)

Anomaly Detection of Trajectories Junier B. Oliva Anomaly Detection An anomaly (or outlier)

Anomaly Detection of Trajectories Junier B. Oliva Anomaly Detection An anomaly (or outlier) in a dataset is an instance that is abnormal or unlikely based on the rest of the dataset If the instances in the dataset are labeled as

760 views • 19 slides
What is an anomaly? Alastair Rushworth Data Scientist DataCamp Anomaly Detection in R Defining

What is an anomaly? Alastair Rushworth Data Scientist DataCamp Anomaly Detection in R Defining

DataCamp Anomaly Detection in R ANOMALY DETECTION IN R What is an anomaly? Alastair Rushworth Data Scientist DataCamp Anomaly Detection in R Defining the term anomaly Anomaly: a data point or collection of data points that do not follow the

870 views • 21 slides
Anomaly Detection Jia-Bin Huang Virginia Tech Spring 2019 ECE-5424G / CS-5824 Administrative

Anomaly Detection Jia-Bin Huang Virginia Tech Spring 2019 ECE-5424G / CS-5824 Administrative

Anomaly Detection Jia-Bin Huang Virginia Tech Spring 2019 ECE-5424G / CS-5824 Administrative Anomaly Detection Motivation Developing an anomaly detection system Anomaly detection vs. supervised learning Choosing what features

514 views • 34 slides
Data Mining II Anomaly Detection Heiko Paulheim Anomaly Detection Also known as Outlier

Data Mining II Anomaly Detection Heiko Paulheim Anomaly Detection Also known as Outlier

Data Mining II Anomaly Detection Heiko Paulheim Anomaly Detection Also known as Outlier Detection Automatically identify data points that are somehow different from the rest Working assumption: There are considerably

905 views • 74 slides
Data Mining II Anomaly Detection Heiko Paulheim Anomaly Detection Also known as Outlier

Data Mining II Anomaly Detection Heiko Paulheim Anomaly Detection Also known as Outlier

Data Mining II Anomaly Detection Heiko Paulheim Anomaly Detection Also known as Outlier Detection Automatically identify data points that are somehow different from the rest Working assumption: There are considerably

984 views • 72 slides
Learning Rules for Anomaly Detection (LERAD) of Hostile Network Traffic Matt Mahoney Overview

Learning Rules for Anomaly Detection (LERAD) of Hostile Network Traffic Matt Mahoney Overview

Learning Rules for Anomaly Detection (LERAD) of Hostile Network Traffic Matt Mahoney Overview Prior Work in Network Anomaly Detection The 1999 DARPA Intrusion Detection Evaluation Packet Header Anomaly Detection (PHAD) Application

575 views • 18 slides
&lt;Title&gt; Yiqun Hu, SP Group Agenda Condition monitoring &amp; anomaly detection

&lt;Title&gt; Yiqun Hu, SP Group Agenda Condition monitoring &amp; anomaly detection

Data Council Singapre 2019 Autoencoder Forest for Anomaly Detection from IoT Time Series &lt;Title&gt; Yiqun Hu, SP Group Agenda Condition monitoring &amp; anomaly detection Autoencoder for anomaly detection Autoencoder

540 views • 27 slides
Temporal, Spatial, and Spatio-temporal Granularities Gabriele Pozzani Department of Computer

Temporal, Spatial, and Spatio-temporal Granularities Gabriele Pozzani Department of Computer

Outline Introduction Temporal granularity Spatial granularity Spatio-temporal granularity Conclusions Temporal, Spatial, and Spatio-temporal Granularities Gabriele Pozzani Department of Computer Science, University of Verona, Italy 27th

720 views • 37 slides
In Incorporating Feedback in into Tree-based Anomaly Detection Shubhomoy Das, Weng-Keen Wong,

In Incorporating Feedback in into Tree-based Anomaly Detection Shubhomoy Das, Weng-Keen Wong,

In Incorporating Feedback in into Tree-based Anomaly Detection Shubhomoy Das, Weng-Keen Wong, Alan Fern, Thomas G. Dietterich and Md Amran Siddiqui School of EECS Anomaly Detection Goal: Identify rare or strange objects 2 Anomaly

756 views • 51 slides
Dataflow Anomaly Detection Presented By Archana Viswanath Computer Science and Engineering The

Dataflow Anomaly Detection Presented By Archana Viswanath Computer Science and Engineering The

Dataflow Anomaly Detection Presented By Archana Viswanath Computer Science and Engineering The Pennsylvania State University Anomaly Intrusion Detection Systems Anomaly Intrusion Detection Systems Model normal behavior. Attack - Any

417 views • 20 slides
Anomaly Based Network Intrusion Detection with Unsupervised Outlier Detection Jiong Zhang and

Anomaly Based Network Intrusion Detection with Unsupervised Outlier Detection Jiong Zhang and

Anomaly Based Network Intrusion Detection with Unsupervised Outlier Detection Jiong Zhang and Mohammad Zulkernine School of Computing Queens University, Kingston Ontario, Canada K7L 3N6 {zhang, mzulker} @cs.queensu.ca Abstract- Anomaly

284 views • 6 slides
Efficient Anomaly Detection by Isolation using Nearest Neighbour Ensemble Tharindu

Efficient Anomaly Detection by Isolation using Nearest Neighbour Ensemble Tharindu

Information Technology Efficient Anomaly Detection by Isolation using Nearest Neighbour Ensemble Tharindu Rukshan Bandaragoda Kai Ming Ting David Albrecht Fei Tony Liu Jonathan R. Wells Outline Overview of anomaly detection

657 views • 41 slides
Statistical Methods for Multivariate Spatial and Spatial-Temporal Processes Mikyoung Jun

Statistical Methods for Multivariate Spatial and Spatial-Temporal Processes Mikyoung Jun

Discussion on Statistical Methods for Multivariate Spatial and Spatial-Temporal Processes Mikyoung Jun mjun@stat.tamu.edu Texas A&amp;M University August 1, 2010 Linear Model of Coregionalization (LMC) Goulard and Voltz (1992),

405 views • 8 slides
Isolation trees Alastair Rushworth Data Scientist DataCamp Anomaly Detection in R Isolation

Isolation trees Alastair Rushworth Data Scientist DataCamp Anomaly Detection in R Isolation

DataCamp Anomaly Detection in R ANOMALY DETECTION IN R Isolation trees Alastair Rushworth Data Scientist DataCamp Anomaly Detection in R Isolation tree DataCamp Anomaly Detection in R Isolation tree plots DataCamp Anomaly Detection in R

631 views • 19 slides
On Entropy in Network Traffic Anomaly Detection Jayro Santiago-Paz, Deni Torres-Roman.

On Entropy in Network Traffic Anomaly Detection Jayro Santiago-Paz, Deni Torres-Roman.

Introduction Feature Extraction Entropy Calculation Anomaly detection Classification Open Issues On Entropy in Network Traffic Anomaly Detection Jayro Santiago-Paz, Deni Torres-Roman. Cinvestav, Campus Guadalajara, Mexico November 2015

690 views • 24 slides
ACCT 420: Topic modeling and anomaly detection Session 8 Dr. Richard M. Crowley 1 Front matter

ACCT 420: Topic modeling and anomaly detection Session 8 Dr. Richard M. Crowley 1 Front matter

ACCT 420: Topic modeling and anomaly detection Session 8 Dr. Richard M. Crowley 1 Front matter 2 . 1 Learning objectives Theory: NLP Anomaly detection Application: Understand annual report readability Examine the

1.12k views • 85 slides
40 years of the Weyl anomaly M. J. Duff Physics Department Imperial College London CFT Beyond

40 years of the Weyl anomaly M. J. Duff Physics Department Imperial College London CFT Beyond

40 years of the Weyl anomaly M. J. Duff Physics Department Imperial College London CFT Beyond Two Dimensions Texas A&amp;M March 2012 1 / 50 Abstract Classically, Weyl invariance S ( g , ) = S ( g , ) under = ( x )

881 views • 50 slides
The Location and Evolution of the South Atlantic Anomaly as Observed by SOLSTICE Laura

The Location and Evolution of the South Atlantic Anomaly as Observed by SOLSTICE Laura

The Location and Evolution of the South Atlantic Anomaly as Observed by SOLSTICE Laura OConnor (University of Michigan) Mentor: Marty Snow (Laboratory for Atmospheric and Space Physics) Outline Background information Description of

421 views • 30 slides
Anomalies and Topological phases in QFT Kazuya Yonekura, Kyushu University 2 Introduction

Anomalies and Topological phases in QFT Kazuya Yonekura, Kyushu University 2 Introduction

1 Anomalies and Topological phases in QFT Kazuya Yonekura, Kyushu University 2 Introduction Symmetry and Anomaly: I hope I dont need to explain the importance of these concepts in QFT. However, what is symmetry, and what is anomaly? /

618 views • 60 slides
Online, Context-aware, Intelligent Anomaly Detection, Causality and Consequence Analysis, and

Online, Context-aware, Intelligent Anomaly Detection, Causality and Consequence Analysis, and

Online, Context-aware, Intelligent Anomaly Detection, Causality and Consequence Analysis, and Response Suggestion for SCADA Systems Wenyu Ren, Tim Yardley , Klara Nahrstedt University of Illinois Urbana-Champaign, Urbana, Illinois, USA

156 views • 5 slides
Outside the Closed World: On Finding Intrusions with Anomaly Detection Robin Sommer

Outside the Closed World: On Finding Intrusions with Anomaly Detection Robin Sommer

Outside the Closed World: On Finding Intrusions with Anomaly Detection Robin Sommer International Computer Science Institute, &amp; Lawrence Berkeley National Laboratory robin@icsi.berkeley.edu http://www.icir.org Advanced Topics in Computer

1.35k views • 99 slides
Data Analysis, Machine Learning, Bro and You! Together again like never before... Presenter

Data Analysis, Machine Learning, Bro and You! Together again like never before... Presenter

Data Analysis, Machine Learning, Bro and You! Together again like never before... Presenter Brian Wylie Working at Kitware Inc. Background in Information Security and Vis Likes open source and mixed Corgis Whats the point of this talk?

705 views • 25 slides
A New SU(2) Anomaly Edward Witten PCTS, October 3, 2018 A familiar anomaly says that in four

A New SU(2) Anomaly Edward Witten PCTS, October 3, 2018 A familiar anomaly says that in four

A New SU(2) Anomaly Edward Witten PCTS, October 3, 2018 A familiar anomaly says that in four spacetime dimensions, an SU(2) gauge theory with a single multiplet of fermions that transform under SU(2) in the spin 1/2 representation is

820 views • 43 slides
Massless Scalar &amp; Scalar Condensate from the Quantum Conformal Anomaly E. Mottola, Los Alamos

Massless Scalar &amp; Scalar Condensate from the Quantum Conformal Anomaly E. Mottola, Los Alamos

Massless Scalar &amp; Scalar Condensate from the Quantum Conformal Anomaly E. Mottola, Los Alamos w. D. Blaschke, R. Caballo-Rubio, JHEP 1412 (2014) 153 w. R. Vaulin, Phys. Rev. D 74, 064004 (2006) w. I. Antoniadis &amp; P. O. Mazur, N. Jour.

520 views • 23 slides

More recommend