Max Function vs High Count

Aniket_Pant · October 13, 2022, 7:43am

Hi Community,

The max function detect anomaly when it will max value for a particular field. For example
average life of a person can be 60 and if we are applying max function on age and it detect anomaly age can be 90 or 100 or 105 etc.

Similarly high_count function is a function where it will detect anomaly where no of event is high , but what is event can we go for high_count for age field.

richcollier · October 20, 2022, 2:20am

the count functions count the number of documents in a bucket_span that match the query of the datafeed.

the count functions do not count fields

Topic		Replies	Views
Advanced Configuration Machine Learning Kibana elastic-stack-machine-learning	9	621	October 28, 2022
ML: count vs low/high-count detector functions Kibana elastic-stack-machine-learning	3	1313	February 23, 2022
High_min & low_max functions - feature request? Elasticsearch elastic-stack-machine-learning	2	408	August 27, 2020
Machine Learning functions Elasticsearch elastic-stack-machine-learning	2	597	May 28, 2018
How do I find these anomalies? Elasticsearch elastic-stack-machine-learning	8	2504	November 1, 2017

Max Function vs High Count

Related topics