Anomaly Detection

Anomaly detection, also known as outlier detection, is a technique in computer science used to identify data points, events, or observations that deviate significantly from a dataset's normal behavior. By establishing a baseline of normalcy, often through statistical analysis or machine learning algorithms, systems can automatically flag these unusual instances. This capability is a cornerstone of modern cybersecurity, where it is applied to detect network intrusions, fraudulent financial transactions, and other malicious activities that manifest as aberrations from established patterns of legitimate user or system activity.

  1. Introduction to Anomaly Detection
    1. Defining Anomalies and Outliers
      1. Basic Definitions and Terminology
        1. Distinction between Anomalies and Noise
          1. Distinction between Anomalies and Outliers
            1. Mathematical Formulations of Anomalies
            2. Types of Outliers by Scope
              1. Global Outliers
                1. Local Outliers
                  1. Contextual Outliers
                  2. The Concept of Normal Behavior
                    1. Statistical Definitions of Normality
                      1. Domain-Specific Notions of Normality
                        1. Baseline Modeling Approaches
                          1. Dynamic vs Static Normal Behavior
                          2. Importance and Applications of Anomaly Detection
                            1. Security and Safety Applications
                              1. Economic Impact and Business Value
                                1. Data Quality Assurance
                                  1. Scientific Discovery and Research
                                  2. Classification of Anomaly Detection Methods
                                    1. Supervision-Based Classification
                                      1. Supervised Methods
                                        1. Semi-supervised Methods
                                          1. Unsupervised Methods
                                          2. Output-Based Classification
                                            1. Anomaly Scores
                                              1. Binary Classification
                                                1. Ranking-Based Outputs
                                                2. Technique-Based Classification
                                                  1. Statistical Methods
                                                    1. Machine Learning Methods
                                                      1. Proximity-Based Methods
                                                    2. Types of Anomalies by Structure
                                                      1. Point Anomalies
                                                        1. Individual Data Point Deviations
                                                          1. Threshold-Based Detection
                                                          2. Contextual Anomalies
                                                            1. Temporal Context
                                                              1. Spatial Context
                                                                1. Behavioral Context
                                                                2. Collective Anomalies
                                                                  1. Sequence Anomalies
                                                                    1. Group Anomalies
                                                                      1. Pattern-Based Anomalies

                                                                  Go to top

                                                                  Next

                                                                  2. Data Fundamentals for Anomaly Detection