Yann Cluchey, profile picture
Uploaded byYann Cluchey
PDF, PPTX4,427 views

Machine Learning and the Elastic Stack

Dr. Stephen Dodson, a tech lead at Elastic, presents an overview of machine learning and its integration within the Elastic Stack, emphasizing its utility in predictive analytics and anomaly detection. The document covers the principles of machine learning, its applications in different fields, and discusses the challenges and architecture of implementing these technologies. The aim is to empower users to derive insights from their data without the need for extensive machine learning expertise.

Embed presentation

Download as PDF, PPTX
1 Dr. Stephen Dodson, Tech Lead Machine Learning, Elastic Machine Learning and the Elastic Stack
2 Overview •  Background •  Machine Learning Overview •  Machine Learning and the Elastic Stack •  Demo •  Architecture
Background •  Me –  Currently, Tech Lead, Machine Learning @ Elastic –  Formally, Founder and CTO of Prelert (acquired by Elastic September 2016) ‒  Presented overview of Prelert at Elastic London User Group in May 2016 •  Prelert –  VC backed software company, founded 2009 –  Behavioural analytics for machine data based (mainly) on unsupervised machine learning –  100+ customers + OEMs with CA, Bluecoat, NetApp + others ‒  IT Operations, IT Security, Retail analytics, IoT etc..
4 Machine Learning •  Algorithms and methods for data driven prediction, decision making, and modelling1 ‒  Learn models from past behaviour (training, modelling) ‒  Use models to predict future behaviour (prediction) ‒  Use predictions to make decisions •  Examples ‒  Image Recognition ‒  Language Translation ‒  Anomaly Detection 1Machine Learning Overview, Tommi Jaakkola, MIT
5 How is this relevant to the Elastic Stack? •  Extracting useful, valuable information is hard Search Aggregations Visualization Machine Learning
6 How is this relevant to the Elastic Stack? •  What if we want to search for: ‒  Has my order rate dropped significantly? ‒  Do my application logs contain unusual messages? ‒  Are any users behaving unusually? ‒  What transactions are fraudulent? •  Goal of ML at Elastic: Extend the Elastic Stack to allow the user to ask these type of questions and get understandable answers •  Constraints: ‒  Data may be limited: no markup may be available or relevant ‒  Compute resource dedicated to machine learning may be limited ‒  User should not need to be a machine learning expert or data scientist
7 Has my order rate dropped significantly?
8 Has my order rate dropped significantly? •  Learn models from past behaviour (training, modelling) •  Use models to predict future behaviour (prediction) •  Use predictions to make decisions Expected value @ 15:05 = 1859 Actual value @ 15:05 = 280 Probability = 0.0000174025
Demo: Simple Time Series
10 Do my application logs contain unusual messages?
11 Do my application logs contain unusual messages? Classify unstructured log messages by clustering similar messages NormalLogMessages UnusuallogMessages
Demo: Multiple Data Sources
13 Analytics Outside of Elastic Architecture Beats Logstash Kibana X-Pack X-Pack Elasticsearch Prelert analysis node Data Kibana Prelert UI •  Issues –  Data Gravity – data from Elasticsearch needs to be sent to Prelert analytics node –  Context – anomalies and data are stored in different data stores and viewed in different Uis –  Scale – Prelert analysis was not easily distributable across nodes –  Resilience – Prelert analysis needed to be restored manually on failover
14 Architecture •  Machine Learning will be part of X-Pack •  Machine Learning jobs will be automatically distributed across the Elasticsearch cluster •  Machine Learning jobs will be resilient to failover •  Machine Learning results and data can be in the same cluster Beats Logstash Kibana X-Pack X-Pack Elasticsearch Security Alerting Monitoring Reporting Graph Machine LearningICON TBD!! X-Pack
15 Status •  Demo on Elastic 5.4 available at Elastic{ON} (March 7th 2017) •  GA shortly after… (ask Sophie!) •  Focus of initial ML product is time series analysis in real-time ‒  Metric anomaly detection ‒  Log message classification and anomaly detection ‒  Population analysis (entity profiling) •  Shrink-wrapped configurations on Beats data - full Elastic Stack experience! Beats X-Pack Elasticsearch AlertingMachine LearningICON TBD!! Kibana

More Related Content

PDF
How we built this: Data tiering, snapshots, and asynchronous search
byElasticsearch
 
PDF
Introduction to machine learning using Elastic
byFaithWestdorp
 
PDF
ArchiMate technology layer - Simplify the models
byCOMPETENSIS
 
PDF
Kubernetes 101
byCrevise Technologies
 
PPTX
Elastic Stack Introduction
byVikram Shinde
 
PDF
Apache Kafka Streams + Machine Learning / Deep Learning
byKai Wähner
 
PPTX
Introduction to Enterprise Architecture
byLeo Shuster
 
PPTX
Backstage at CNCF Madison.pptx
byBrandenTimm1
 
How we built this: Data tiering, snapshots, and asynchronous search
byElasticsearch
 
Introduction to machine learning using Elastic
byFaithWestdorp
 
ArchiMate technology layer - Simplify the models
byCOMPETENSIS
 
Kubernetes 101
byCrevise Technologies
 
Elastic Stack Introduction
byVikram Shinde
 
Apache Kafka Streams + Machine Learning / Deep Learning
byKai Wähner
 
Introduction to Enterprise Architecture
byLeo Shuster
 
Backstage at CNCF Madison.pptx
byBrandenTimm1
 

What's hot

PDF
Integration Architecture with the Data Flow
byLeanIX GmbH
 
PDF
Kubeflow
byKarane Vieira
 
PDF
Apache Spark Streaming in K8s with ArgoCD & Spark Operator
byDatabricks
 
PDF
How Apache Kafka® Works
byconfluent
 
PDF
Replicate Elasticsearch Data with Cross-Cluster Replication (CCR)
byElasticsearch
 
PDF
Azure Machine Learning tutorial
byGiacomo Lanciano
 
PDF
Docker & kubernetes
byNexThoughts Technologies
 
PDF
Vertex AI - Unified ML Platform for the entire AI workflow on Google Cloud
byMárton Kodok
 
PDF
Kafka Cluster Federation at Uber (Yupeng Fui & Xiaoman Dong, Uber) Kafka Summ...
byconfluent
 
PDF
How Netflix Tunes EC2 Instances for Performance
byBrendan Gregg
 
PPTX
Togaf 9.2 Introduction
byMohamed Zakarya Abdelgawad
 
PPTX
07. datacenters
byMuhammad Ahad
 
PPTX
Introduction to Kubernetes
byrajdeep
 
PDF
LogicMonitor: An Overview
byJames McCabe
 
PDF
Kubernetes Application Deployment with Helm - A beginner Guide!
byKrishna-Kumar
 
ODP
Deep Dive Into Elasticsearch
byKnoldus Inc.
 
PPTX
11. operating-systems-part-1
byMuhammad Ahad
 
PDF
Scaling Data and ML with Apache Spark and Feast
byDatabricks
 
PDF
Integrating Apache Kafka Into Your Environment
byconfluent
 
PDF
An intro to Kubernetes operators
byJ On The Beach
 
Integration Architecture with the Data Flow
byLeanIX GmbH
 
Kubeflow
byKarane Vieira
 
Apache Spark Streaming in K8s with ArgoCD & Spark Operator
byDatabricks
 
How Apache Kafka® Works
byconfluent
 
Replicate Elasticsearch Data with Cross-Cluster Replication (CCR)
byElasticsearch
 
Azure Machine Learning tutorial
byGiacomo Lanciano
 
Docker & kubernetes
byNexThoughts Technologies
 
Vertex AI - Unified ML Platform for the entire AI workflow on Google Cloud
byMárton Kodok
 
Kafka Cluster Federation at Uber (Yupeng Fui & Xiaoman Dong, Uber) Kafka Summ...
byconfluent
 
How Netflix Tunes EC2 Instances for Performance
byBrendan Gregg
 
Togaf 9.2 Introduction
byMohamed Zakarya Abdelgawad
 
07. datacenters
byMuhammad Ahad
 
Introduction to Kubernetes
byrajdeep
 
LogicMonitor: An Overview
byJames McCabe
 
Kubernetes Application Deployment with Helm - A beginner Guide!
byKrishna-Kumar
 
Deep Dive Into Elasticsearch
byKnoldus Inc.
 
11. operating-systems-part-1
byMuhammad Ahad
 
Scaling Data and ML with Apache Spark and Feast
byDatabricks
 
Integrating Apache Kafka Into Your Environment
byconfluent
 
An intro to Kubernetes operators
byJ On The Beach
 

Similar to Machine Learning and the Elastic Stack

PDF
Well, That Escalated Quickly: Anomaly Detection with Elastic Machine Learning
byDevFest DC
 
PDF
Elasticsearch : petit déjeuner du 13 mars 2014
byALTER WAY
 
PDF
Big data expo - machine learning in the elastic stack
byBigDataExpo
 
PDF
LUISS - Deep Learning and data analyses - 09/01/19
byAlberto Paro
 
PPTX
ELK Solutions Enablement Session - 17th March'2020
byAshnikbiz
 
PDF
Séminaire Big Data Alter Way - Elasticsearch - octobre 2014
byALTER WAY
 
PDF
Using Machine Learning to Understand Kafka Runtime Behavior (Shivanath Babu, ...
byconfluent
 
PPTX
Intro elasticsearch taswarbhatti
byTaswar Bhatti
 
PPTX
Elasticsearch features and ecosystem
byPavel Alexeev
 
PDF
Regina Pison - Elastic - OSL19
bymarketingsyone
 
PPTX
Machine Learning Introduction for Digital Business Leaders
bySudha Jamthe
 
PPTX
Elastic Search Capability Presentation.pptx
byKnoldus Inc.
 
PPTX
Devteach 2017 Store 2 million of audit a day into elasticsearch
byTaswar Bhatti
 
PDF
Monitoring modern applications using Elastic
byElasticsearch
 
PDF
Infrastructure monitoring made easy, from ingest to insight
byElasticsearch
 
PDF
Ajit jaokar slides
bySheamus McGovern
 
PDF
Data Science for Internet of Things with Ajit Jaokar
byJessica Willis
 
PDF
O monitoramento da infraestrutura facilitado, da ingestão ao insight
byElasticsearch
 
PPTX
Machine Learning with Spark
byelephantscale
 
PDF
Getting Started with Elasticsearch
byAlibaba Cloud
 
Well, That Escalated Quickly: Anomaly Detection with Elastic Machine Learning
byDevFest DC
 
Elasticsearch : petit déjeuner du 13 mars 2014
byALTER WAY
 
Big data expo - machine learning in the elastic stack
byBigDataExpo
 
LUISS - Deep Learning and data analyses - 09/01/19
byAlberto Paro
 
ELK Solutions Enablement Session - 17th March'2020
byAshnikbiz
 
Séminaire Big Data Alter Way - Elasticsearch - octobre 2014
byALTER WAY
 
Using Machine Learning to Understand Kafka Runtime Behavior (Shivanath Babu, ...
byconfluent
 
Intro elasticsearch taswarbhatti
byTaswar Bhatti
 
Elasticsearch features and ecosystem
byPavel Alexeev
 
Regina Pison - Elastic - OSL19
bymarketingsyone
 
Machine Learning Introduction for Digital Business Leaders
bySudha Jamthe
 
Elastic Search Capability Presentation.pptx
byKnoldus Inc.
 
Devteach 2017 Store 2 million of audit a day into elasticsearch
byTaswar Bhatti
 
Monitoring modern applications using Elastic
byElasticsearch
 
Infrastructure monitoring made easy, from ingest to insight
byElasticsearch
 
Ajit jaokar slides
bySheamus McGovern
 
Data Science for Internet of Things with Ajit Jaokar
byJessica Willis
 
O monitoramento da infraestrutura facilitado, da ingestão ao insight
byElasticsearch
 
Machine Learning with Spark
byelephantscale
 
Getting Started with Elasticsearch
byAlibaba Cloud
 

More from Yann Cluchey

PPTX
Implementing Keyword Sort with Elasticsearch
byYann Cluchey
 
PPTX
Annotated Text feature in Elasticsearch
byYann Cluchey
 
PPTX
Elasticsearch at AffiliateWindow
byYann Cluchey
 
PPTX
GOTO Aarhus 2014: Making Enterprise Data Available in Real Time with elastics...
byYann Cluchey
 
PPTX
Lightning talk: elasticsearch at Cogenta
byYann Cluchey
 
PPTX
Concurrency Patterns with MongoDB
byYann Cluchey
 
Implementing Keyword Sort with Elasticsearch
byYann Cluchey
 
Annotated Text feature in Elasticsearch
byYann Cluchey
 
Elasticsearch at AffiliateWindow
byYann Cluchey
 
GOTO Aarhus 2014: Making Enterprise Data Available in Real Time with elastics...
byYann Cluchey
 
Lightning talk: elasticsearch at Cogenta
byYann Cluchey
 
Concurrency Patterns with MongoDB
byYann Cluchey
 

Recently uploaded

PDF
What Is a Private LLM and Why Enterprises Need It
byAivada
 
DOCX
iRobot Post‑Mortem and Alternative Paths - Discussion Document for Boards and...
byDave Litwiller
 
PDF
WCAG Analyzer Tools and Techniques for User-Friendly Websites
byAccessibility Analyzer
 
PPTX
DYNAMICALLY.pptx good for the teachers or students to do seminars and for tea...
bympoorvika031
 
PDF
Is It Possible to Have Wi-Fi Without an Internet Provider
bySidra Jefferi
 
PPTX
Top _HR Technology Trends _for 2026_.pptx
byAutomationEdge Technologies
 
PDF
CompTIA Cybersecurity Analyst (CySA+) CS0-003: Unit 5
byVICTOR MAESTRE RAMIREZ
 
PDF
Fundamentals and Frontiers of Post Quantum Cryptography
byGokul Alex
 
PDF
Unlocking the Power of Salesforce Architecture: Frameworks for Effective Solu...
byvarsha30tiwari
 
PPTX
Emancipatory Information Retrieval: Radically Reorienting Information Retriev...
byBhaskar Mitra
 
PDF
Lab 1.5 - Sharing Secrets with GPG ~ 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
PPTX
Building Cyber Resilience for 2026: Best Practices for a Secure, AI-Driven Bu...
byYasir Naveed Riaz
 
PDF
DevFest El Jadida 2025 - Product Thinking
byElmehdi AMLOU
 
PPTX
MGw_MRS Benfits seu beficios de redes 4g
byJoaquimBarros18
 
PDF
Data Virtualization in Action: Scaling APIs and Apps with FME
bySafe Software
 
PDF
The State of the Gen AI economy - 2025 - The Meliora Company
byClive Dickens
 
PDF
Cross-Cultural Agile Development -Challenges and Strategies for Overcoming Them-
byTakashi Makino
 
PDF
HCSP-Presales-Campus Network Planning and Design V2.0
byVeronica916344
 
PPTX
Why Most GenAI Projects Fail to Scale and How to Become One of the Success St...
byEarley Information Science
 
PDF
WHITE PAPER_ Ransomware Payment Policy and Resilience Strategy_ A Framework f...
byssuser0d171c
 
What Is a Private LLM and Why Enterprises Need It
byAivada
 
iRobot Post‑Mortem and Alternative Paths - Discussion Document for Boards and...
byDave Litwiller
 
WCAG Analyzer Tools and Techniques for User-Friendly Websites
byAccessibility Analyzer
 
DYNAMICALLY.pptx good for the teachers or students to do seminars and for tea...
bympoorvika031
 
Is It Possible to Have Wi-Fi Without an Internet Provider
bySidra Jefferi
 
Top _HR Technology Trends _for 2026_.pptx
byAutomationEdge Technologies
 
CompTIA Cybersecurity Analyst (CySA+) CS0-003: Unit 5
byVICTOR MAESTRE RAMIREZ
 
Fundamentals and Frontiers of Post Quantum Cryptography
byGokul Alex
 
Unlocking the Power of Salesforce Architecture: Frameworks for Effective Solu...
byvarsha30tiwari
 
Emancipatory Information Retrieval: Radically Reorienting Information Retriev...
byBhaskar Mitra
 
Lab 1.5 - Sharing Secrets with GPG ~ 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
Building Cyber Resilience for 2026: Best Practices for a Secure, AI-Driven Bu...
byYasir Naveed Riaz
 
DevFest El Jadida 2025 - Product Thinking
byElmehdi AMLOU
 
MGw_MRS Benfits seu beficios de redes 4g
byJoaquimBarros18
 
Data Virtualization in Action: Scaling APIs and Apps with FME
bySafe Software
 
The State of the Gen AI economy - 2025 - The Meliora Company
byClive Dickens
 
Cross-Cultural Agile Development -Challenges and Strategies for Overcoming Them-
byTakashi Makino
 
HCSP-Presales-Campus Network Planning and Design V2.0
byVeronica916344
 
Why Most GenAI Projects Fail to Scale and How to Become One of the Success St...
byEarley Information Science
 
WHITE PAPER_ Ransomware Payment Policy and Resilience Strategy_ A Framework f...
byssuser0d171c
 

Machine Learning and the Elastic Stack

  • 1.
    1 Dr. Stephen Dodson,Tech Lead Machine Learning, Elastic Machine Learning and the Elastic Stack
  • 2.
    2 Overview •  Background •  MachineLearning Overview •  Machine Learning and the Elastic Stack •  Demo •  Architecture
  • 3.
    Background •  Me –  Currently,Tech Lead, Machine Learning @ Elastic –  Formally, Founder and CTO of Prelert (acquired by Elastic September 2016) ‒  Presented overview of Prelert at Elastic London User Group in May 2016 •  Prelert –  VC backed software company, founded 2009 –  Behavioural analytics for machine data based (mainly) on unsupervised machine learning –  100+ customers + OEMs with CA, Bluecoat, NetApp + others ‒  IT Operations, IT Security, Retail analytics, IoT etc..
  • 4.
    4 Machine Learning •  Algorithmsand methods for data driven prediction, decision making, and modelling1 ‒  Learn models from past behaviour (training, modelling) ‒  Use models to predict future behaviour (prediction) ‒  Use predictions to make decisions •  Examples ‒  Image Recognition ‒  Language Translation ‒  Anomaly Detection 1Machine Learning Overview, Tommi Jaakkola, MIT
  • 5.
    5 How is thisrelevant to the Elastic Stack? •  Extracting useful, valuable information is hard Search Aggregations Visualization Machine Learning
  • 6.
    6 How is thisrelevant to the Elastic Stack? •  What if we want to search for: ‒  Has my order rate dropped significantly? ‒  Do my application logs contain unusual messages? ‒  Are any users behaving unusually? ‒  What transactions are fraudulent? •  Goal of ML at Elastic: Extend the Elastic Stack to allow the user to ask these type of questions and get understandable answers •  Constraints: ‒  Data may be limited: no markup may be available or relevant ‒  Compute resource dedicated to machine learning may be limited ‒  User should not need to be a machine learning expert or data scientist
  • 7.
    7 Has my orderrate dropped significantly?
  • 8.
    8 Has my orderrate dropped significantly? •  Learn models from past behaviour (training, modelling) •  Use models to predict future behaviour (prediction) •  Use predictions to make decisions Expected value @ 15:05 = 1859 Actual value @ 15:05 = 280 Probability = 0.0000174025
  • 9.
  • 10.
    10 Do my applicationlogs contain unusual messages?
  • 11.
    11 Do my applicationlogs contain unusual messages? Classify unstructured log messages by clustering similar messages NormalLogMessages UnusuallogMessages
  • 12.
  • 13.
    13 Analytics Outside ofElastic Architecture Beats Logstash Kibana X-Pack X-Pack Elasticsearch Prelert analysis node Data Kibana Prelert UI •  Issues –  Data Gravity – data from Elasticsearch needs to be sent to Prelert analytics node –  Context – anomalies and data are stored in different data stores and viewed in different Uis –  Scale – Prelert analysis was not easily distributable across nodes –  Resilience – Prelert analysis needed to be restored manually on failover
  • 14.
    14 Architecture •  Machine Learningwill be part of X-Pack •  Machine Learning jobs will be automatically distributed across the Elasticsearch cluster •  Machine Learning jobs will be resilient to failover •  Machine Learning results and data can be in the same cluster Beats Logstash Kibana X-Pack X-Pack Elasticsearch Security Alerting Monitoring Reporting Graph Machine LearningICON TBD!! X-Pack
  • 15.
    15 Status •  Demo onElastic 5.4 available at Elastic{ON} (March 7th 2017) •  GA shortly after… (ask Sophie!) •  Focus of initial ML product is time series analysis in real-time ‒  Metric anomaly detection ‒  Log message classification and anomaly detection ‒  Population analysis (entity profiling) •  Shrink-wrapped configurations on Beats data - full Elastic Stack experience! Beats X-Pack Elasticsearch AlertingMachine LearningICON TBD!! Kibana