Is your anomaly detector ready for change? adapting aiops solutions to the real world

Conference paper (2024)

Authors

L. Poenaru-Olaru Software Engineering - EEMCS
Natalia Karpova Student
Luis Cruz Software Engineering - EEMCS
Jan S. Rellermeyer Data-Intensive Systems - EEMCS , Leibniz Universität
A. van Deursen Software Engineering - EEMCS
Research Group
Software Engineering (EEMCS) (TU Delft)
Anomaly detection Concept drift detection AIOps Model maintenance Model monitoring
More Info
expand_more

Published Date

2024

Language

English

Faculty

Electrical Engineering, Mathematics and Computer Science

Department

Software Technology

Research Group

Software Engineering

Abstract

Anomaly detection techniques are essential in automating the monitoring of IT systems and operations. These techniques imply that machine learning algorithms are trained on operational data corresponding to a specific period of time and that they are continuously evaluated on newly emerging data. Operational data is constantly changing over time, which affects the performance of deployed anomaly detection models. Therefore, continuous model maintenance is required to preserve the performance of anomaly detectors over time. In this work, we analyze two different anomaly detection model maintenance techniques in terms of the model update frequency, namely blind model retraining and informed model retraining. We further investigate the effects of updating the model by retraining it on all the available data (full-history approach) and only the newest data (sliding window approach). Moreover, we investigate whether a data change monitoring tool is capable of determining when the anomaly detection model needs to be updated through retraining.