US 11,797,413 B2
Anomaly detection method, system, and program
Ryosuke Togawa, Tokyo (JP)
Assigned to NEC CORPORATION, Tokyo (JP)
Filed by NEC Corporation, Tokyo (JP)
Filed on Mar. 2, 2022, as Appl. No. 17/684,656.
Application 17/684,656 is a continuation of application No. 16/470,281, granted, now 11,288,161, previously published as PCT/JP2016/005238, filed on Dec. 27, 2016.
Prior Publication US 2022/0188209 A1, Jun. 16, 2022
Int. Cl. G06F 11/00 (2006.01); G06F 11/30 (2006.01); G06F 11/07 (2006.01)
CPC G06F 11/3082 (2013.01) [G06F 11/076 (2013.01); G06F 11/0772 (2013.01); G06F 11/3075 (2013.01)] 19 Claims
OG exemplary drawing
 
1. An anomaly detection method comprising:
acquiring a plurality of reference data including a number of log outputs of different devices with respect to different aggregate units;
acquiring target data including a number of log outputs of a target device with respect to a first aggregate unit included in the different aggregate units;
determining a first reference data, among the plurality of reference data, based on similarity between the target data and each of the plurality of reference data; and
detecting that the target device has an anomaly based on the first reference data and the target data.