Patent · US Active

Dynamic graph anomaly detection framework and scalable system architecture

US9202052B1 · kind B1 · utility

62Cited by

0References

24Claims

0Family size

Assignee

EMC Corporation · US

Inventors

Chunsheng Fang · San Jose, US
Derek Lin · San Mateo, US
Teng Wang · San Jose, US

Key dates

Filing date	Sep 26, 2013
Grant date	Dec 1, 2015
Priority date	—
Expiry date	Apr 17, 2034

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/034
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Machine generated event log data which includes event(s) occurring over a window of time is received where each event includes one or more events having a first node, a second node, and a timestamp. The events are aggregated into a plurality of aggregated graph snapshots. One or more communities are identified within the plurality of aggregated graph snapshots. One or more community tracking links are determined between communities in the plurality of aggregated graph snapshots. Communities in the plurality of aggregated graph snapshot which are anomalous are identified based on one or more of the following: a community level anomaly or an evolutionary path level anomaly.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.