Author: Rosaria Silipo (KNIME). As first published in DarkReading.
The challenge is to identify suspicious events in training sets where no anomalies are encountered. Part two of a two-part series.
The problem of anomaly detection is not new, and a number of solutions have already been proposed over the years. However, before starting with the list of techniques, let's agree on a necessary premise: All anomaly detection techniques must involve a training set where no anomaly examples are encountered. The challenge consists of identifying suspicious events, even in the absence of examples.