Poster: An Extreme Value Theory Approach to Anomaly Detection (EVT-AD)
نویسنده
چکیده
We introduce a new approach to anomaly detection based on extreme value theory statistics. Our method improves detection accuracy by replacing binary feature thresholds with anomaly scores and by modeling the tail region of the distribution where anomalies occur. It requires no optimization or tuning and provides insights into results. This work describes the Extreme Value Theory-Anomaly Detection (EVT-AD) algorithm and provides simulation results for two challenging problems: insider threat and credit card fraud. In these experiments, EVT-AD substantially outperformed a standard threshold-based anomaly detection algorithm, providing accurate detection with few or no false alarms even for scenarios with weak indicators. The results suggest that EVT-AD may offer an improvement over existing statistical methods for security-related problems. Keywords-anomaly detection; extreme value theory; insider threat; credit card fraud
منابع مشابه
Sparse Representation of Multivariate Extremes with Applications to Anomaly Ranking
Extremes play a special role in Anomaly Detection. Beyond inference and simulation purposes, probabilistic tools borrowed from Extreme Value Theory (EVT), such as the angular measure, can also be used to design novel statistical learning methods for Anomaly Detection/ranking. This paper proposes a new algorithm based on multivariate EVT to learn how to rank observations in a high dimensional sp...
متن کاملSparsity in Multivariate Extremes with Applications to Anomaly Detection
Capturing the dependence structure of multivariate extreme events is a major concern in many fields involving the management of risks stemming from multiple sources, e.g. portfolio monitoring, insurance, environmental risk management and anomaly detection. One convenient (nonparametric) characterization of extreme dependence in the framework of multivariate Extreme Value Theory (EVT) is the ang...
متن کاملManaging extreme risk in some major stock markets: An extreme value approach
Article history: Received 10 May 2013 Received in revised form 2 September 2014 Accepted 2 September 2014 Available online 11 September 2014 The study investigates the relative performance of Value-at-Risk (VaR) models using daily share price index data from six different countries across Asia, Europe and the United States for a period of 10 years from January 01, 2000 toDecember 31, 2009. Them...
متن کاملNovelty Detection with Multivariate Extreme Value Statistics
Novelty detection, or one-class classification, aims to determine if data are “normal” with respect to some model of normality constructed using examples of normal system behaviour. If that model is composed of generative probability distributions, the extent of “normality” in the data space can be described using Extreme Value Theory (EVT), a branch of statistics concerned with describing the ...
متن کاملValue at Risk Estimation Using Extreme Value Theory
A common assumption in quantitative financial risk modelling is the distributional assumption of normality in the asset’s return series, which makes modelling easy but proves to be inefficient if the data exhibit extreme tails. When dealing with extreme financial events like the Global Financial Crisis of 2007-2008 while quantifying extreme market risk, Extreme Value Theory (EVT) proves to be a...
متن کامل