AWS CloudTrail rare error Message

Goal

Looks for an unusual error Message. This use case is very similar to AWS CloudTrail rare error Code. It should be considered that this use case can produce more noise as there are thousands of unique error messages compared to dozens of error Codes.

Description

Given the historic data of a customer, It will learn as normal error Messages, those that appear a portion of days higher than a defined threshold.

Characteristics

Name

AWS CloudTrail rare error Message

Data involved

We will use all the data incoming from the AWS API that involves an error.

Alert Generation

It will generate an alert/signal when the model considers that the error message is anomalous.

Raw outputs of the model

A boolean value that indicates whether the error Message is anomalous or not.

PreviousAWS CloudTrail rare error Code NextAWS CloudTrail High distinct count error Code

Last updated 2 months ago