Multi bucket anomaly detection

sethm · August 13, 2024, 2:18pm

Does Anomaly detection support multi-bucket anomalies similar to
multi-bucket anomaly

Multi bucket anomaly detection helps detect slow bleeding anomalies that occur over multiple sequential windows. If it is not currently supported, are there alternatives such as running anomaly detection on index roll ups to get similar behavior?

gaobinlong · August 14, 2024, 2:37am

You can configure multiple features in a anomaly detector, that can detect anomalies across multiple buckets, take a look at the documentation for more details: https://opensearch.org/docs/latest/observing-your-data/ad/index/.

sethm · August 15, 2024, 2:04pm

Understand that we can configure multiple features per detector but we are looking for an ability where the detector would be able to detect anomalies occurring over multiple bucket intervals as outlined in the elastic blog

kaituo · October 7, 2024, 7:19pm

Our concept of shingle is similar to multi-bucket anomaly where the data in the immediate segment acts as a context for the most recent one. By default, our shingle size is 8 so we are detecting 8-bucket anomaly instead of single bucket.

Read: Anomaly detection - OpenSearch Documentation for details

Topic		Replies	Views
Do missing buckets ruin anomaly detection? OpenSearch	1	307	March 11, 2024
Are there pre-made Anomaly Detection detectors? Machine Learning	3	827	August 25, 2021
Anomaly Detection with more than one feature OpenSearch feature-request , anomaly-detection	0	17	October 28, 2024
Real Time Anomaly Detection in Open Distro for Elasticsearch \| Open Distro General Feedback	2	953	April 7, 2020
Opensearch Anomaly Detection behavior OpenSearch anomaly-detection	5	489	November 6, 2023

Multi bucket anomaly detection

Related topics