Dynamic- X-Y: A Tool for Learning Dynamic Alert Suppression Policies in AIOps

2024 16th International Conference on COMmunication Systems & NETworkS (COMSNETS) Pub Date : 2024-01-03 DOI:10.1109/COMSNETS59351.2024.10427540

Karan Bhukar, Harshit Kumar, Seema Nagar, Pooja Aggarwal, Ian Manning, Rohan Arora, R. Mahindru, Amit Paradkar, Matthew Thornhill, Stephen Cook, Jack Buggins

{"title":"Dynamic- X-Y: A Tool for Learning Dynamic Alert Suppression Policies in AIOps","authors":"Karan Bhukar, Harshit Kumar, Seema Nagar, Pooja Aggarwal, Ian Manning, Rohan Arora, R. Mahindru, Amit Paradkar, Matthew Thornhill, Stephen Cook, Jack Buggins","doi":"10.1109/COMSNETS59351.2024.10427540","DOIUrl":null,"url":null,"abstract":"Although Cloud Native Network functions (CNFs) provide greater agility, manageability, and significantly lower operational costs, the reliability and performance assurance is getting increasingly complex, therefore observability tools are needed to monitor and detect anomalous events, triggering alert notifications and creation of incidents. However, most of these notifications turn out to be false alarms, leading to alert fatigue, inefficiencies, and the risk of missing critical alerts. Existing approaches for reducing alert noise rely on static policies that can quickly become outdated in dynamic IT environments. We demonstrate a novel unsupervised approach, Dynamic-X-Y, which learns dynamic alert suppression policies from historical alert data and applies them to incoming events/alerts at runtime, thereby reducing unnecessary alert notifications. Our approach achieves an accuracy of 93.93% in identifying correct alerts, outperforming the baselines by a significant margin. Additionally, we present a case study demonstrating the effectiveness of our approach vis-a-vis the No-Sunnression annroach.","PeriodicalId":518748,"journal":{"name":"2024 16th International Conference on COMmunication Systems & NETworkS (COMSNETS)","volume":"107 1-3","pages":"291-293"},"PeriodicalIF":0.0000,"publicationDate":"2024-01-03","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2024 16th International Conference on COMmunication Systems & NETworkS (COMSNETS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/COMSNETS59351.2024.10427540","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Although Cloud Native Network functions (CNFs) provide greater agility, manageability, and significantly lower operational costs, the reliability and performance assurance is getting increasingly complex, therefore observability tools are needed to monitor and detect anomalous events, triggering alert notifications and creation of incidents. However, most of these notifications turn out to be false alarms, leading to alert fatigue, inefficiencies, and the risk of missing critical alerts. Existing approaches for reducing alert noise rely on static policies that can quickly become outdated in dynamic IT environments. We demonstrate a novel unsupervised approach, Dynamic-X-Y, which learns dynamic alert suppression policies from historical alert data and applies them to incoming events/alerts at runtime, thereby reducing unnecessary alert notifications. Our approach achieves an accuracy of 93.93% in identifying correct alerts, outperforming the baselines by a significant margin. Additionally, we present a case study demonstrating the effectiveness of our approach vis-a-vis the No-Sunnression annroach.

查看原文本刊更多论文

动态 X-Y：学习 AIOps 中动态警报抑制策略的工具

尽管云原生网络功能（CNF）提供了更高的灵活性和可管理性，并大大降低了运营成本，但其可靠性和性能保证却变得越来越复杂，因此需要可观测性工具来监控和检测异常事件，触发警报通知并创建事件。然而，这些通知中的大多数都是误报，导致警报疲劳、效率低下以及错过关键警报的风险。减少警报噪音的现有方法依赖于静态策略，而这些策略在动态的 IT 环境中很快就会过时。我们展示了一种新颖的无监督方法 Dynamic-X-Y，它能从历史警报数据中学习动态警报抑制策略，并在运行时将其应用于传入事件/警报，从而减少不必要的警报通知。我们的方法在识别正确警报方面达到了 93.93% 的准确率，明显优于基线方法。此外，我们还介绍了一个案例研究，展示了我们的方法与 "No-Sunnression "方法相比的有效性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2024 16th International Conference on COMmunication Systems & NETworkS (COMSNETS)

自引率

0.00%

发文量