公开(公告)号：US11216491B2

公开(公告)日：2022-01-04

申请号：US15143563

申请日：2016-04-30

Applicant: Splunk Inc.

Inventor： Li Li ,  Gang Tao ,  Yongxin Su ,  Junqing Hao ,  Ting Wang ,  John Robert Coates ,  Elias Haddad ,  Guodong Wang

IPC: G06N20/00 ,  G06F16/28 ,  G06F16/2458

Abstract: The operation of an automatic data input and query system is controlled by well-defined control data. Certain control data may relate to data schemas and direct operations performed by the system to extract fields from machine data. Automatic methods may determine proper field extraction control information by analyzing a sample of data from a source, breaking the sample data into event segments, classifying the segments into groups based on a measure of similarity, determining an operable extraction rule for each group, and storing the resulting extraction model. Data patterns known by the system can be leveraged to perform the event breaking and field identification for the classifying. Embodiments may provide a user interface to view, interact with, and approve the computer-generated extraction model.

公开(公告)号：US10693743B2

公开(公告)日：2020-06-23

申请号：US14902848

申请日：2015-09-21

Applicant: Splunk Inc.

Inventor： Qianjie Zhong ,  Geng Qin ,  Ting Wang ,  Min Zhang ,  Micah Delfino ,  Jef Bekes ,  D. Randall Young ,  Cary Noel ,  Feng Shao ,  Dritan Bitincka

IPC: H04L12/24 ,  G06F16/44 ,  H04L12/26 ,  G06F3/0482 ,  G06F3/0486 ,  H04L29/08

Abstract: Techniques and mechanisms are disclosed that enable collection of various types of data from cloud computing services and the generation of various dashboards and visualizations to view information about collections of cloud computing resources. A user can configure collection of data from one or more cloud computing services and view visualizations using an application platform referred to herein as a cloud computing management application. A cloud computing management application further may be configured to generate and cause display of interactive topology map representations of cloud computing resources based on the collected data, where an interactive topology map enables users to view an intuitive visualization of a collection of computing resources, efficiently cause performance of actions with respect to various resources displayed in the topology map, and analyze the collection of resources in ways that are not possible using conventional cloud computing service management consoles.

公开(公告)号：US09978127B2

公开(公告)日：2018-05-22

申请号：US15664613

申请日：2017-07-31

Applicant: Splunk Inc.

Inventor： Shiming Yuan ,  Qianjie Zhong ,  Ting Wang ,  Tianli Zhang

IPC: G06T11/60 ,  G06T5/00

CPC classification number: G06T5/002 ,  G06T11/60 ,  G06T2207/20012

Abstract: A processing device receives input representing a selection of a first area of a source image. The processing device identifies a result image that corresponds to the source image. The result image is previously created for the source image using a blur operation. The processing device aligns the selected first area of the source image with a corresponding portion in the result image. The processing device transforms, using the corresponding portion in the result image, the aligned first area in the source image to a blurred area without blurring a remaining area of the source image.

公开(公告)号：US20170330309A1

公开(公告)日：2017-11-16

申请号：US15664613

申请日：2017-07-31

Applicant: Splunk Inc.

Inventor： Shiming Yuan ,  Qianjie Zhong ,  Ting Wang ,  Tianli Zhang

IPC: G06T5/00 ,  G06T11/60

CPC classification number: G06T5/002 ,  G06T11/60 ,  G06T2207/20012

Abstract: A processing device receives input representing a selection of a first area of a source image. The processing device identifies a result image that corresponds to the source image. The result image is previously created for the source image using a blur operation. The processing device aligns the selected first area of the source image with a corresponding portion in the result image. The processing device transforms, using the corresponding portion in the result image, the aligned first area in the source image to a blurred area without blurring a remaining area of the source image.

公开(公告)号：US20170206639A1

公开(公告)日：2017-07-20

申请号：US15477302

申请日：2017-04-03

Applicant: Splunk Inc.

Inventor： Shiming Yuan ,  Qianjie Zhong ,  Ting Wang ,  Tianli Zhang

IPC: G06T5/00 ,  G06T11/60

CPC classification number: G06T5/002 ,  G06T11/60 ,  G06T2207/20012

Abstract: A processing device receives input representing a selection of a first area of an image. The processing device determines whether the first selected area of the image corresponds to a blurred area previously created for a second selected area of the image. The blurred area is previously created for the second selected area of the image having a size that is less than a size of the image. The processing device replaces, responsive to determining that the first selected area of the image corresponds to the blurred area previously created for the second selected area of the image, the first selected area of the image with a corresponding portion of the blurred area previously created for the second selected area of the image.

公开(公告)号：US20170185607A1

公开(公告)日：2017-06-29

申请号：US15461076

申请日：2017-03-16

Applicant: Splunk Inc.

Inventor： Qianjie Zhong ,  Ting Wang ,  Margaret Lee ,  Dawei Li ,  Nick Filippi ,  Yue Ni ,  Shiming Yuan

IPC: G06F17/30

CPC classification number: G06F16/125 ,  G06F11/0727 ,  G06F11/0775 ,  G06F16/162 ,  G06F16/245 ,  G06F16/2455 ,  G06F16/24565 ,  G06F16/2477 ,  G06F16/254 ,  G06F16/9535 ,  G08B21/18

Abstract: An example method for managing datasets produced by alert-triggering search queries may include producing a dataset by executing a search query on a portion of data associated with a time window defined relative to a current time. The method may further include responsive to determining that a portion of the dataset satisfies a condition defining an alert, generating an instance of the alert. The method may further include associating, by a memory data structure, the instance of the alert with an identifier of the query and a parameter specifying a time of execution of the query that has triggered the instance. The method may further include receiving a request for the dataset portion. The method may further include substituting, in a definition of the time window, the current time with the time parameter. The method may further include reproducing the dataset portion by re-executing the query using the time window.

公开(公告)号：US20220121410A1

公开(公告)日：2022-04-21

申请号：US17565181

申请日：2021-12-29

Applicant: Splunk Inc.

Inventor： Li Li ,  Gang Tao ,  Yongxin Su ,  Junqing Hao ,  Ting Wang ,  John Robert Coates ,  Elias Haddad ,  Guodong Wang

IPC: G06F3/14 ,  G06Q10/06 ,  G06N5/02 ,  G06F17/40 ,  G06F9/54

Abstract: The operation of an automatic data input and query system is controlled by well-defined control data. The system exposes user interfaces enabling an administrator to interact with control data to modify the ongoing operation of the system. Certain control data determines the collection and treatment of data from various technology sources. A robust control interface is provided enabling the efficient and reliable adding on of new technology data sources. Once established, control data for a new technology data source may be packaged in a form for archiving or distribution. The system may support the export and import of such packages. Such packages may be created independently of the system.

公开(公告)号：US20200167311A1

公开(公告)日：2020-05-28

申请号：US16777357

申请日：2020-01-30

Applicant: Splunk Inc.

Inventor： Qianjie Zhong ,  Ting Wang ,  Margaret Lee ,  Dawei Li ,  Nick Filippi ,  Yue Ni ,  Shiming Yuan

IPC: G06F16/11 ,  G08B21/18 ,  G06F16/2455 ,  G06F16/9535 ,  G06F16/2458 ,  G06F16/245 ,  G06F16/16 ,  G06F16/25 ,  G06F11/07

Abstract: An example method for managing datasets produced by alert-triggering search queries may include producing a dataset by executing a search query on a portion of data associated with a time window defined relative to a current time. The method may further include responsive to determining that a portion of the dataset satisfies a condition defining an alert, generating an instance of the alert. The method may further include associating, by a memory data structure, the instance of the alert with an identifier of the query and a parameter specifying a time of execution of the query that has triggered the instance. The method may further include receiving a request for the dataset portion. The method may further include substituting, in a definition of the time window, the current time with the time parameter. The method may further include reproducing the dataset portion by re-executing the query using the time window.

公开(公告)号：US10567557B2

公开(公告)日：2020-02-18

申请号：US14889764

申请日：2014-10-31

Applicant: Splunk Inc.

Inventor： Lai Qiang Ding ,  Ziliang Chen ,  Junqing Hao ,  Ting Wang

IPC: H04L12/26 ,  H04L29/08 ,  H04L29/06

Abstract: The disclosed embodiments provide a system that processes data received from a remote system. During operation, the system sends, from a computer system to a remote system, a request for a local time at the remote system and records a time of transmission of the request. Next, the system obtains, from the remote system, a response to the request, wherein the response includes the local time of the remote system. The system then computes a difference between the time of transmission and the local time of the remote system to determine a time offset that accounts for a time difference between the computer system and the remote system. Finally, the system uses the time offset to standardize timestamps in time-series data received from the remote system, wherein standardizing the timestamps associated with the time-series data comprises adjusting the timestamps to conform to a time standard.

公开(公告)号：US10152773B2

公开(公告)日：2018-12-11

申请号：US15955043

申请日：2018-04-17

Applicant: Splunk Inc.

Inventor： Shiming Yuan ,  Qianjie Zhong ,  Ting Wang ,  Tianli Zhang

IPC: G06T11/60 ,  G06T5/00

Abstract: A processing device receives input representing a selection of a first area of a source image. The processing device sends a request to a server machine for a result image that corresponds to the source image. The processing device, responsive to determining that the server machine does not have the result image, creates a blurred area for the first area, the blurred area corresponding to a portion of the image that contains the first area. The portion of the image having a size that is greater than an aggregate size of the first area and less than the size of the image. The processing device also sends the blurred area to the server machine for storage of the blurred area as the result image. The processing device replaces the first area with the corresponding portion of the blurred area without blurring a remaining area of the image.