Make sure your system has the following components:
- Docker Compose - Included in Docker Desktop
- Git LFS
- AWS User and Aws CLI
- Run
aws configurewith your AWS user to set up preferred AWS region (e.g. us-east-2), AWS Key, Secret, token - Your AWS user has the IAM permissions listed here
- Run
In this demo, you will deploy a complete Fraud Detection Inference pipeline to Hazelcast. The pipeline highlights two key capabilities in Hazelcast:
-
Fast (in-memory) data store to hold
- Customer and Merchant feature data (e.g customer socio-economic attributes, merchant category etc)
- Feature engineering data dictionaries used to tranform categorical features into numerical inputs for a Fraud Detection model
-
Efficient data stream processing and compute capability required to
- Process a stream of incoming credit card transactions
- Calculate real-time features (e.g. distance from home, time of day, day of week)
- Perform low-latency customer and merchant feature data retrieval
- Perform feature engineering to turn features into model inputs
- Run a LightGBM fraud detection model inside Hazelcast using ONNX runtime.
- Individual inference times under 0.1ms
- Note: The was trained with LightGBM framework and exported to ONNX format.
You will use Kafka as source of credit card transactions coming into your fraud detection inference pipeline.
-
A simple way to get Kafka running is to Create a Kafka Cluster in Confluent Cloud
-
Make sure you deploy your Kafka Cluster to AWS and use the same region used previously set in
aws configure -
Once your cluster is created, go to
Cluster Settings-> Endpointsand capture your Kafka Clusterbootstrap serverURL
-
Store it as an environment variable
export KAFKA_ENDPOINT=pkc-ymrq7.us-east-2.aws.confluent.cloud:9092
-
From
API Keys-> clickAdd Keyand make sure you capture your new Key and Secret
Store the Key and Secret as environment variables
export KAFKA_CLUSTER_KEY=5BCBBMROQCA4L4SK
export KAFKA_CLUSTER_SECRET=<YOUR_SECRET>
- Now, you need to create a 'Transactions' topic in your cluster
Make sure you name your Topic "Transactions". It is important!
You will spin up 3 containers in AWS ECS:
- A single-node Hazelcast cluster
- A Hazelcast Management Center instance
- A custom Fraud Analytics dashboard
We've built a docker image preloaded with:
- Hazelcast 5.2.1 running on Ubuntu 22.04
- ONNX runtime in a supported platform/OS/Programming language combination. In this case, AMD64/Linux/Java
- Some sample Transaction data (in csv files) for testing purposes
This image will run on ARM devices, like an Apple M1-powered device, via emulation. However, the performance and stability are negatively impacted when running in emulation mode
This docker image bundles a custom Streamlit app that connects automatically to the hazelcast-onnx container.
The app:
- is written entirely in Python
- Uses Hazelcast Python client to query JSON data stored in Hazelcast with SQL
Create a docker "Context" to deploy a docker compose file to AWS ECS
docker context create ecs myecscontext
docker context use myecscontext
Now that you've switched to your myecscontext, docker compose will deploy to AWS ECS.
docker compose -f docker-compose-awsecs.yml up
This will take 5-10 minutes to complete
Once the process completes, you can check the 3 Services are up and running
hazelcast-onnxfraud-dashboardmanagement-center
docker compose ps
For convenience, store hazelcast-onnx server and port in an environment variable (HZ_ONNX).
export HZ_ONNX=ecsde-LoadB-1NHRSHPTW92BJ-7b72b00b647ecd29.elb.us-east-2.amazonaws.com:5701
Make a note of the IP:port of the management-center and fraud-dashboard services.
If your HZ_ONNX is ecsde-LoadB-1NHRSHPTW92BJ-7b72b00b647ecd29.elb.us-east-2.amazonaws.com:5701, then
- Your
management-centerwill be accessible onecsde-LoadB-1NHRSHPTW92BJ-7b72b00b647ecd29.elb.us-east-2.amazonaws.com:8080 - Your
fraud-dashboardwill be onecsde-LoadB-1NHRSHPTW92BJ-7b72b00b647ecd29.elb.us-east-2.amazonaws.com:8501
Next, You will load 100k transactions into Kafka.
Note that the transactions are preloaded as CSV files in your hazelcast-onnx container.
cd transaction-loader
Followed by
hz-cli submit -v -t $HZ_ONNX -c org.example.Main target/transaction-loader-1.0-SNAPSHOT.jar 100k-transactions.csv
You should see a "Transaction Loader Job" success message in the output
With the transactions ready to process in Kafka, we now turn to populate Customer and Merchant feature data needed to make fraud predictions. A number of feature data loading jobs will populate several Hazelcast Maps with data about Customer & Merchant
Once these jobs are executed, the fraud inference pipeline will deployed.
To launch these jobs, go into the feature-data-loader folder
cd ../feature-data-loader
and run
hz-cli submit -v -t $HZ_ONNX -c org.example.client.DeployFraudDetectionInference \
target/feature-data-loader-1.0-SNAPSHOT.jar lightgbm_fraud_detection_onnx
After a few seconds, you should see an output similar to
At a high-level, the Fraud Detection inference pipeline executes the following steps:
- Start pulling transactions from Kafka (with minimal information such as Credit Card Number, Merchant, Amount, Transaction date and Geolocation )
- Enrich these transactions with with Customer and Merchant Features (e.g. customer's socio-demographic data, historical purchases etc, average spent, spent in last month, etc)
- Calculate real-time features such as "distance from home" (distance from transaction Geolocation and the Customer's billing address).
- Perform Feature engineering required to convert Customer and Merchant features into numeric values required by the Fraud Detection model
- Run the Fraud Detection model to obtain a fraud probability for each transaction
- Store prediction results (in JSON format) in a Hazelcast Map
In a real-world scenario, the end of the inference pipeline is typically the start of other pipelines. For example, you could create pipelines to:
- Trigger automatic alerts to ML-Ops team warning about model/data drift.
- Update Customer "online features" such as
"last known coordinates","last transaction amount"."amount spent in the last 24 hours","number/value of transactions attempted in the last X minutes/days" - Run Explainability tools and store their output
Use your browser to navigate to Management center (e.g ecsde-LoadB-1NHRSHPTW92BJ-7b72b00b647ecd29.elb.us-east-2.amazonaws.com:8080)
Explore your Fraud Detection Inference Pipeline
Use your browser to navigate to Fraud Analytics dashboard (e.g ecsde-LoadB-1NHRSHPTW92BJ-7b72b00b647ecd29.elb.us-east-2.amazonaws.com:8501)
The Fraud Analytics Dashboard should look like this
Don't forget to check the source code in python-sql\app.py for ideas on how to query JSON data stored in Hazelcast with SQL!
cd ..
docker compose down
This will take another 5-10 minutes
You may also want to return Docker to your "default" context.
This will prevent future docker compose inadvertedly deploying to AWS ECS!
docker context use default
With a powerful desktop/laptop, you may want to run the demo locally.
NOTE: The instructions below were tested on an M1-powered MacBookPro with 16GB Memory & 10-core CPU. The demo workload will exercise the desktop while loading/processing transactions.
First, ensure your docker compose will deploy to your local machine
docker context use default
Next, update your HZ_ONNX environment variable to point to your local IP address & Hazelcast port
export HZ_ONNX=192.0.68.1:5701
Next, launch the Hazelcast-onnx, management center and fraud dashboard containers with
docker compose -f docker-compose.yml up -d
From here, you can deploy the feature loading jobs and fraud detection pipeline
cd feature-data-loader/
hz-cli submit -v -t $HZ_ONNX -c org.example.client.DeployFraudDetectionInference \
target/feature-data-loader-1.0-SNAPSHOT.jar lightgbm_fraud_detection_onnx
NOTE: You may find that running on an M1 (or ARM-powered) device, the Hazelcast-onnx container is occasionally unstable. This is due to the fact that the container image was built for the AMD platform. It does run on ARM-powered devices via emulation. Docker explicitely warns that this may impact and instability
The image was built for AMD as due to a limitation of ONNX Runtime (it doesn't support Java on ARM-based devices yet)
If your hazelcast image becomes unresponsive, simply docker compose down and docker compose -f docker-compose.yml up -d!
You can generate the ONNX model used in this demo by following the steps below:
- Download the transaction data used to train the model
- Train the model a Jupyter Notebook with Python 3.8 and LightGBM
- Convert the model to ONNX format
cd model-training
wget https://hz-fraud-demo-training-data.s3.us-east-2.amazonaws.com/transactions.csv
Assuming you have conda installed, create a python environment with all of the dependencies
conda create --name hz-onnx python=3.8
conda activate hz-onnx
pip3 install --upgrade pip
pip3 install -r requirements.txt
jupyter notebook
open the Model Training.ipynb Notebook
The notebook has extensive notes explaining how the model was trained using LightGBM and how it was coverted to ONNX
You may also want to look at the Java class wrapping the ONNX model. This class shows the code to intialize the ONNX Runtime envrionment, load the ONNX model and get a prediction from it
If you want to create your own hazelcast-onnx image and preload it with your data and model, you can check the Dockerfile under the hz-onnx-debian folder.
Once you are happy with your updates to Dockerfile, you can create and publish your image by running
cd ..
docker-compose -f build-hz-onnx-image.yml build
docker tag fraud-detection-onnx-hazelcast-onnx-debian <your-github-username>/<image-name>
docker push <your-github-username>/<image-name>