Detecting data anomalies with Apache Kafka®, Stream Processing and ksqlDB

•

0 likes•214 views

Brett Randall, Confluent, Solutions Engineer Data anomalies occur in many kinds of event streams, and detecting them in a timely manner can reduce risks and costs associated with invalid data, or undesired and sometimes criminal activities. Financial institutions can use stream-processing to detect potentially fraudulent transactions and activities, and SIEM teams can curate and detect patterns in security and event-log data. In this talk we’ll look at how stream-processing can be used to perform real-time anomaly-detection in streaming event data. https://www.meetup.com/KafkaMelbourne/events/274420345/

Technology

Detecting data anomalies
with Apache Kafka®,
stream-processing and ksqlDB
Brett Randall, Solutions Engineer - Conﬂuent, November 2020

Copyright 2020, Conﬂuent, Inc. All rights reserved. This document may not be reproduced in any manner without the express written permission of Conﬂuent, Inc.
Links
3
• https://github.com/confluentinc/examples/tree/6.0.0-post/cp-quickstart
• https://github.com/confluentinc/examples/tree/6.0.0-post/ccloud/ccloud-stack
• https://kafka-tutorials.confluent.io/anomaly-detection/ksql.html
• https://www.confluent.io/blog/build-a-intrusion-detection-using-ksqldb/#aggregation
s-streams-tables
• https://www.confluent.io/blog/how-real-time-stream-processing-works-with-ksqldb/
• https://www.confluent.io/blog/how-real-time-materialized-views-work-with-ksqldb/
• https://www.confluent.io/blog/build-a-intrusion-detection-using-ksqldb/#aggregation
s-streams-tables

cnﬂ.io/meetups cnﬂ.io/slackcnﬂ.io/blog
Thank you!
@javabrett
brett.randall@conﬂuent.io

More from confluent

Citi TechTalk Session 2: Kafka Deep Dive

confluent

Traditional data pipelines often face scalability issues and challenges related to cost, their monolithic design, and reliance on batch data processing. They also typically operate under the premise that all data needs to be stored in a single centralized data source before it's put to practical use. Confluent Cloud on Amazon Web Services (AWS) provides a fully managed cloud-native platform that helps you simplify the way you build real-time data flows using streaming data pipelines and Apache Kafka.

Build real-time streaming data pipelines to AWS with Confluent

confluent

Q&A with Confluent Professional Services: Confluent Service Mesh

confluent

Citi Tech Talk: Event Driven Kafka Microservices

confluent

An in depth look at how Confluent is being used in the financial services industry. Gain an understanding of how organisations are utilising data in motion to solve common problems and gain benefits from their real time data capabilities. It will look more deeply into some specific use cases and show how Confluent technology is used to manage costs and mitigate risks. This session is aimed at Solutions Architects, Sales Engineers and Pre Sales, and also the more technically minded business aligned people. Whilst this is not a deeply technical session, a level of knowledge around Kafka would be helpful.

Confluent & GSI Webinars series - Session 3

confluent

Transforming applications built with traditional messaging solutions such as TIBCO, MQ and Solace to be scalable, reliable and ready for the move to cloud How can applications built with traditional messaging technologies like TIBCO, Solace and IBM MQ be modernised and be made cloud ready? What are the advantages to Event Streaming approaches to pub/sub vs traditional message queues? What are the strengeths and weaknesses of both approaches, and what use cases and requirements are actually a better fit for messaging than Kafka?

Citi Tech Talk: Messaging Modernization

confluent

Citi Tech Talk: Data Governance for streaming and real time data

confluent

Confluent & GSI Webinars series: Session 2

confluent

Vous apprendrez également à : • Créer plus rapidement des produits et fonctionnalités à l’aide d’une suite complète de connecteurs et d’outils de gestion des flux, et à connecter vos environnements à des pipelines de données • Protéger vos données et charges de travail les plus critiques grâce à des garanties intégrées en matière de sécurité, de gouvernance et de résilience • Déployer Kafka à grande échelle en quelques minutes tout en réduisant les coûts et la charge opérationnelle associés

Data In Motion Paris 2023

confluent

Confluent Partner Tech Talk with Synthesis

confluent

The Future of Application Development - API Days - Melbourne 2023

confluent

The Playful Bond Between REST And Data Streams

confluent

The Journey to Data Mesh with Confluent

confluent

Citi Tech Talk: Monitoring and Performance

confluent

Confluent Partner Tech Talk with Reply

confluent

Citi Tech Talk Disaster Recovery Solutions Deep Dive

confluent

Citi Tech Talk: Hybrid Cloud

confluent

Partner Tech Talk Q3: Q&A with PS - Migration and Upgrade

confluent

Confluent Partner Tech Talk with QLIK

confluent

Data streaming is an infrastructure revolution that is fundamentally changing how public sector organisations think about data and build applications. Rather than viewing data as stored records or transient messages, data could be considered to be a continually updating stream of events. Event-driven architecture is the future of data infrastructure, this webinar is designed to educate and inform those who are interesting in driving this change.

Real-time Streaming for Government and the Public Sector

confluent

More from confluent (20)

Citi TechTalk Session 2: Kafka Deep Dive

Build real-time streaming data pipelines to AWS with Confluent

Q&A with Confluent Professional Services: Confluent Service Mesh

Citi Tech Talk: Event Driven Kafka Microservices

Confluent & GSI Webinars series - Session 3

Citi Tech Talk: Messaging Modernization

Citi Tech Talk: Data Governance for streaming and real time data

Confluent & GSI Webinars series: Session 2

Data In Motion Paris 2023

Confluent Partner Tech Talk with Synthesis

The Future of Application Development - API Days - Melbourne 2023

The Playful Bond Between REST And Data Streams

The Journey to Data Mesh with Confluent

Citi Tech Talk: Monitoring and Performance

Confluent Partner Tech Talk with Reply

Citi Tech Talk Disaster Recovery Solutions Deep Dive

Citi Tech Talk: Hybrid Cloud

Partner Tech Talk Q3: Q&A with PS - Migration and Upgrade

Confluent Partner Tech Talk with QLIK

Real-time Streaming for Government and the Public Sector

Recently uploaded

Strategies for Landing an Oracle DBA Job as a Fresher

Remote DBA Services

CNIC Information System with Pakdata Cf In Pakistan

danishmna97

Exploring Multimodal Embeddings with Milvus

Zilliz

Dubai, known for its towering skyscrapers, luxurious lifestyle, and relentless pursuit of innovation, often finds itself in the global spotlight. However, amidst the glitz and glamour, the emirate faces its own set of challenges, including the occasional threat of flooding. In recent years, Dubai has experienced sporadic but significant floods, disrupting normalcy and posing unique challenges to its infrastructure. Among the critical nodes in this bustling metropolis is the Dubai International Airport, a vital hub connecting the world. This article delves into the intersection of Dubai flood events and the resilience demonstrated by the Dubai International Airport in the face of such challenges.

Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf

Orbitshub

DBX First Quarter 2024 Investor Presentation

Dropbox

Six Myths about Ontologies: The Basics of Formal Ontology

johnbeverley2021

EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER

MadyBayot

The microservices honeymoon is over. When starting a new project or revamping a legacy monolith, teams started looking for alternatives to microservices. The Modular Monolith, or 'Modulith', is an architecture that reaps the benefits of (vertical) functional decoupling without the high costs associated with separate deployments. This talk will delve into the advantages and challenges of this progressive architecture, beginning with exploring the concept of a 'module', its internal structure, public API, and inter-module communication patterns. Supported by spring-modulith, the talk provides practical guidance on addressing the main challenges of a Modultith Architecture: finding and guarding module boundaries, data decoupling, and integration module-testing. You should not miss this talk if you are a software architect or tech lead seeking practical, scalable solutions. About the author With two decades of experience, Victor is a Java Champion working as a trainer for top companies in Europe. Five thousands developers in 120 companies attended his workshops, so he gets to debate every week the challenges that various projects struggle with. In return, Victor summarizes key points from these workshops in conference talks and online meetups for the European Software Crafters, the world’s largest developer community around architecture, refactoring, and testing. Discover how Victor can help you on victorrentea.ro : company training catalog, consultancy and YouTube playlists.

Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024

Victor Rentea

Dubai, often portrayed as a shimmering oasis in the desert, faces its own set of challenges, including the occasional threat of flooding. Despite its reputation for opulence and modernity, the emirate is not immune to the forces of nature. In recent years, Dubai has experienced sporadic but significant floods, testing the resilience of its infrastructure and communities. Among the critical lifelines in this bustling metropolis is the Dubai International Airport, a bustling hub that connects the city to the world. This article explores the intersection of Dubai flood events and the resilience demonstrated by the Dubai International Airport in the face of such challenges.

Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...

Orbitshub

Accelerating FinTech Innovation: Unleashing API Economy and GenAI Vasa Krishnan, Chief Technology Officer - FinResults Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...

apidays

FWD Group - Insurer Innovation Award 2024

The Digital Insurer

Artificial Intelligence Chap.5 : Uncertainty

Khushali Kathiriya

Angeliki Cooney has spent over twenty years at the forefront of the life sciences industry, working out of Wynantskill, NY. She is highly regarded for her dedication to advancing the development and accessibility of innovative treatments for chronic diseases, rare disorders, and cancer. Her professional journey has centered on strategic consulting for biopharmaceutical companies, facilitating digital transformation, enhancing omnichannel engagement, and refining strategic commercial practices. Angeliki's innovative contributions include pioneering several software-as-a-service (SaaS) products for the life sciences sector, earning her three patents. As the Senior Vice President of Life Sciences at Avenga, Angeliki orchestrated the firm's strategic entry into the U.S. market. Avenga, a renowned digital engineering and consulting firm, partners with significant entities in the pharmaceutical and biotechnology fields. Her leadership was instrumental in expanding Avenga's client base and establishing its presence in the competitive U.S. market.

Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...

Angeliki Cooney

Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving

Edi Saputra

Elevate Developer Efficiency & build GenAI Application with Amazon Q

Bhuvaneswari Subramani

MINDCTI Revenue Release Quarter One 2024

MIND CTI

Architecting Cloud Native Applications

WSO2

The value of a flexible API Management solution for Open Banking Steve Melan, Manager for IT Innovation and Architecture - State's and Saving's Bank of Luxembourg Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - The value of a flexible API Management solution for O...

apidays

Effective data discovery is crucial for maintaining compliance and mitigating risks in today's rapidly evolving privacy landscape. However, traditional manual approaches often struggle to keep pace with the growing volume and complexity of data. Join us for an insightful webinar where industry leaders from TrustArc and Privya will share their expertise on leveraging AI-powered solutions to revolutionize data discovery. You'll learn how to: - Effortlessly maintain a comprehensive, up-to-date data inventory - Harness code scanning insights to gain complete visibility into data flows leveraging the advantages of code scanning over DB scanning - Simplify compliance by leveraging Privya's integration with TrustArc - Implement proven strategies to mitigate third-party risks Our panel of experts will discuss real-world case studies and share practical strategies for overcoming common data discovery challenges. They'll also explore the latest trends and innovations in AI-driven data management, and how these technologies can help organizations stay ahead of the curve in an ever-changing privacy landscape.

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

TrustArc

Following the popularity of "Cloud Revolution: Exploring the New Wave of Serverless Spatial Data," we're thrilled to announce this much-anticipated encore webinar. In this sequel, we'll dive deeper into the Cloud-Native realm by uncovering practical applications and FME support for these new formats, including COGs, COPC, FlatGeoBuf, GeoParquet, STAC, and ZARR. Building on the foundation laid by industry leaders Michelle Roby of Radiant Earth and Chris Holmes of Planet in the first webinar, this second part offers an in-depth look at the real-world application and behind-the-scenes dynamics of these cutting-edge formats. We will spotlight specific use-cases and workflows, showcasing their efficiency and relevance in practical scenarios. Discover the vast possibilities each format holds, highlighted through detailed discussions and demonstrations. Our expert speakers will dissect the key aspects and provide critical takeaways for effective use, ensuring attendees leave with a thorough understanding of how to apply these formats in their own projects. Elevate your understanding of how FME supports these cutting-edge technologies, enhancing your ability to manage, share, and analyze spatial data. Whether you're building on knowledge from our initial session or are new to the serverless spatial data landscape, this webinar is your gateway to mastering cloud-native formats in your workflows.

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Safe Software

Recently uploaded (20)

Strategies for Landing an Oracle DBA Job as a Fresher

CNIC Information System with Pakdata Cf In Pakistan

Exploring Multimodal Embeddings with Milvus

Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf

DBX First Quarter 2024 Investor Presentation

Six Myths about Ontologies: The Basics of Formal Ontology

EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER

Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024

Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...

Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...

FWD Group - Insurer Innovation Award 2024

Artificial Intelligence Chap.5 : Uncertainty

Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...

Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving

Elevate Developer Efficiency & build GenAI Application with Amazon Q

MINDCTI Revenue Release Quarter One 2024

Architecting Cloud Native Applications

Apidays New York 2024 - The value of a flexible API Management solution for O...

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Detecting data anomalies with Apache Kafka®, Stream Processing and ksqlDB

1. Detecting data anomalies with Apache Kafka®, stream-processing and ksqlDB Brett Randall, Solutions Engineer - Conﬂuent, November 2020

2. Conﬂuent Cloud Voucher CC60COMM

3. Copyright 2020, Conﬂuent, Inc. All rights reserved. This document may not be reproduced in any manner without the express written permission of Conﬂuent, Inc. Links 3 • https://github.com/confluentinc/examples/tree/6.0.0-post/cp-quickstart • https://github.com/confluentinc/examples/tree/6.0.0-post/ccloud/ccloud-stack • https://kafka-tutorials.confluent.io/anomaly-detection/ksql.html • https://www.confluent.io/blog/build-a-intrusion-detection-using-ksqldb/#aggregation s-streams-tables • https://www.confluent.io/blog/how-real-time-stream-processing-works-with-ksqldb/ • https://www.confluent.io/blog/how-real-time-materialized-views-work-with-ksqldb/ • https://www.confluent.io/blog/build-a-intrusion-detection-using-ksqldb/#aggregation s-streams-tables

4. Copyright 2020, Conﬂuent, Inc. All rights reserved. This document may not be reproduced in any manner without the express written permission of Conﬂuent, Inc. ksqlDB commands and queries 4 • ccloud ksql app configure-acls lksqlc-gjn3m stock_trades --cluster lkc-10j6v • CREATE STREAM stock_trades WITH (kafka_topic='stock_trades', value_format='AVRO'); SELECT *, QUANTITY * PRICE AS VALUE FROM STOCK_TRADES WHERE QUANTITY * PRICE > 99000 AND QUANTITY * PRICE < 100000 EMIT CHANGES; • SELECT WINDOWSTART, WINDOWEND, SYMBOL, COUNT(*) AS COUNT FROM STOCK_TRADES WINDOW TUMBLING (SIZE 1 SECOND) GROUP BY SYMBOL HAVING COUNT(*) > 5 EMIT CHANGES;

5. Copyright 2020, Conﬂuent, Inc. All rights reserved. This document may not be reproduced in any manner without the express written permission of Conﬂuent, Inc. ksqlDB queries 5 • commit.interval.ms = 5000 • CREATE STREAM "STOCK_BUYS" AS SELECT * FROM STOCK_TRADES WHERE SIDE = 'BUY' EMIT CHANGES; • CREATE STREAM "STOCK_SELLS" AS SELECT * FROM STOCK_TRADES WHERE SIDE = 'SELL' EMIT CHANGES; • SELECT * FROM STOCK_BUYS LEFT JOIN STOCK_SELLS WITHIN 10 SECONDS ON STOCK_BUYS.SYMBOL = STOCK_SELLS.SYMBOL WHERE STOCK_BUYS.PRICE > 2 * STOCK_SELLS.PRICE EMIT CHANGES;

6. cnfl.io/meetups cnfl.io/slackcnfl.io/blog Thank you! @javabrett brett.randall@confluent.io

Detecting data anomalies with Apache Kafka®, Stream Processing and ksqlDB

Recommended

Recommended

More Related Content

More from confluent

More from confluent (20)

Recently uploaded

Recently uploaded (20)

Detecting data anomalies with Apache Kafka®, Stream Processing and ksqlDB