Building a UEBA System Without ML: Streaming Behavioral Baselines with SQL
A SQL-based UEBA system computes rolling behavioral baselines for users and entities using window aggregations, then flags deviations in real time. Unlike ML-based UEBA, it requires no model training, no feature pipelines, and no retraining cycles. I...
risingwave.com9 min read