Detecting Outliers without ML?

dar · September 24, 2019, 1:30pm

Is it possible to have Kibana show/highlight documents that have the biggest percentage variance in a given numeric field over the selected time slice? Imagine I'm logging hits containing URLs and response times:

URL, Response Time (ms)
www.site1.com,25
www.site1.com,28
www.site1.com,35
www.site2.com,141
www.site2.com,150
www.site3.com,1320
www.site3.com,1350

...how would I have Kibana flag up the third hit to www.site1.com as being anomalous because of the percentage variance in response time, please?

flash1293 · September 25, 2019, 8:57am

Hi @dar,

You might be able to use Kibana watchers to do something comparable by querying both the max value of response time and the standard deviation and triggering when these two differ too much. Keep in mind though that outlier detection is a complicated topic with a lot of difficult to tune edge cases when done in production settings.

system · October 23, 2019, 8:57am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Kibana filtering percentile/outliers Kibana	2	2216	October 12, 2017
Detect outliers in non timeline based data Elasticsearch elastic-stack-machine-learning	5	494	October 31, 2019
Anomaly Detection Kibana skipping data Kibana elastic-stack-machine-learning	12	882	July 15, 2020
Trends analysis of logs for one hour Kibana	4	996	June 29, 2017
Plot raw data Kibana	7	6833	November 10, 2017

Detecting Outliers without ML?

Related topics