TY - GEN
T1 - Anomaly detection over independent processes
T2 - 2014 52nd Annual Allerton Conference on Communication, Control, and Computing, Allerton 2014
AU - Cohen, Kobi
AU - Zhao, Qing
N1 - Publisher Copyright: © 2014 IEEE.
PY - 2014/1/30
Y1 - 2014/1/30
N2 - The problem of sequential detection of anomalous processes among K independent processes is considered. At each time, only a subset of the processes can be observed, and the observations from each chosen process follow two different distributions, depending on whether the process is normal or abnormal. Each anomalous process incurs a cost per unit time until its anomaly is identified and fixed. Different anomalous processes may incur different costs depending on their criticality to the system. Switching between processes and state declarations are allowed at all times, while decisions are based on all past observations and actions. The objective is a sequential search strategy that minimizes the total expected cost, incurred by all the processes during the detection process, under reliability constraints. We develop a simple closed-loop policy (i.e., decisions depend on past observations and actions) for the anomaly detection problem. Asymptotic optimality of the proposed policy is shown when a single process is observed at a time and strong performance are demonstrated by simulation examples under multi-processes probing.
AB - The problem of sequential detection of anomalous processes among K independent processes is considered. At each time, only a subset of the processes can be observed, and the observations from each chosen process follow two different distributions, depending on whether the process is normal or abnormal. Each anomalous process incurs a cost per unit time until its anomaly is identified and fixed. Different anomalous processes may incur different costs depending on their criticality to the system. Switching between processes and state declarations are allowed at all times, while decisions are based on all past observations and actions. The objective is a sequential search strategy that minimizes the total expected cost, incurred by all the processes during the detection process, under reliability constraints. We develop a simple closed-loop policy (i.e., decisions depend on past observations and actions) for the anomaly detection problem. Asymptotic optimality of the proposed policy is shown when a single process is observed at a time and strong performance are demonstrated by simulation examples under multi-processes probing.
KW - Anomaly detection
KW - Sequential hypothesis testing
KW - Sequential probability ratio test (SPRT)
UR - http://www.scopus.com/inward/record.url?scp=84946691636&partnerID=8YFLogxK
U2 - https://doi.org/10.1109/ALLERTON.2014.7028432
DO - https://doi.org/10.1109/ALLERTON.2014.7028432
M3 - Conference contribution
T3 - 2014 52nd Annual Allerton Conference on Communication, Control, and Computing, Allerton 2014
SP - 33
EP - 37
BT - 2014 52nd Annual Allerton Conference on Communication, Control, and Computing, Allerton 2014
Y2 - 30 September 2014 through 3 October 2014
ER -