Abstract
Anomaly detection has been used for decades to identify and extract anomalous components from data. Many techniques have been used to detect anomalies. One of the increasingly significant techniques is Machine Learning (ML), which plays an important role in this area. In this research paper, we conduct a Systematic Literature Review (SLR) which analyzes ML models that detect anomalies in their application. Our review analyzes the models from four perspectives; the applications of anomaly detection, ML techniques, performance metrics for ML models, and the classification of anomaly detection. In our review, we have identified 290 research articles, written from 2000-2020, that discuss ML techniques for anomaly detection. After analyzing the selected research articles, we present 43 different applications of anomaly detection found in the selected research articles. Moreover, we identify 29 distinct ML models used in the identification of anomalies. Finally, we present 22 different datasets that are applied in experiments on anomaly detection, as well as many other general datasets. In addition, we observe that unsupervised anomaly detection has been adopted by researchers more than other classification anomaly detection systems. Detection of anomalies using ML models is a promising area of research, and there are a lot of ML models that have been implemented by researchers. Therefore, we provide researchers with recommendations and guidelines based on this review.
Highlights
Detecting anomalies is a major issue that has been studied for centuries
We observed that intrusion detection, network anomaly detection, general anomaly detection, and data applications are the studies most often applied in the anomaly detection area
As for RQ2, we demonstrated 29 different Machine Learning (ML) models that have been applied by researchers, with the most commonly used being SVM
Summary
Detecting anomalies is a major issue that has been studied for centuries. Numerous distinct methods have been developed and used to detect anomalies for different applications. Detection refers to ‘‘the problem of finding patterns in data that do not conform to expected behavior’’ [1], [2]. The detection of anomalies is widely used in a broad variety of applications. Examples of these include fraud detection, loan application processing, and monitoring of medical conditions, An example of a medical application is heart rate monitors [3]. Other widely used applications of detecting anomalies include cyber security intrusion detection [4]–[6], fault detection for aviation safety study, streaming, and hyperspectral imagery, etc. The importance of detecting anomalies in various application domains concerns the risk that unpro-
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
