公开(公告)号：US20160105338A1

公开(公告)日：2016-04-14

申请号：US14800672

申请日：2015-07-15

Applicant: Splunk Inc.

Inventor： Tristan Antonio Fletcher ,  Hemendra Singh Choudhary ,  Clint Sharp

IPC: H04L12/26

CPC classification number: H04L43/16 ,  G06F3/0481 ,  G06F3/04817 ,  G06F3/0482 ,  G06F3/0484 ,  G06F3/04842 ,  G06F3/04847 ,  G06F9/542 ,  G06F17/30424 ,  G06F17/30463 ,  G06F17/30477 ,  G06F17/30554 ,  G06F17/3056 ,  G06F17/30572 ,  G06F17/30675 ,  G06F17/30864 ,  G06F17/30867 ,  G06F17/30958 ,  G06F17/30964 ,  G06F17/30979 ,  G06F17/30991 ,  G06Q10/06393 ,  G06T11/206 ,  G06T2200/24 ,  H04L29/08072 ,  H04L41/0213 ,  H04L41/0806 ,  H04L41/22 ,  H04L41/5009 ,  H04L41/5032 ,  H04L41/5035 ,  H04L41/5038 ,  H04L43/04 ,  H04L43/045 ,  H04L67/10 ,  H04L67/16

Abstract: Techniques are disclosed for providing an aggregate key performance indicator (KPI) that spans multiple services and for providing user adjustment to KPI factors via a GUI that enables a user to configure an aggregate KPI with feedback that better characterizes the performance of the services. The GUI may enable a user to select KPIs and to adjust weights (e.g., importance) associated with the KPIs. The weight of a KPI may affect the influence a value of the KPI has on the calculation of an aggregate KPI value (e.g., score). The GUI may provide near real-time feedback concerning the effect the weights have on the aggregate KPI value by displaying the aggregate KPI value (e.g., score) and updating the aggregate KPI value as the user adjusts the weights.

Abstract translation: 公开了用于提供涵盖多个服务的聚合关键性能指标（KPI）和用于通过GUI提供用户对KPI因素的调整的技术，所述GUI使用户能够通过更好地表征服务性能的反馈来配置聚合KPI。 GUI可以使得用户能够选择KPI并且调整与KPI相关联的权重（例如，重要性）。 KPI的权重可能会影响KPI的值对计算总体KPI值（例如，得分）的影响。 GUI可以通过在用户调整权重时显示聚合KPI值（例如，分数）和更新聚合KPI值来提供关于权重对总体KPI值的影响的接近实时反馈。

公开(公告)号：US11973852B2

公开(公告)日：2024-04-30

申请号：US17466665

申请日：2021-09-03

Applicant: Splunk Inc.

Inventor： Fang I. Hsiao ,  Clayton S. Ching ,  Michael R. Dickey ,  Vladimir A. Shcherbakov ,  Clint Sharp

IPC: H04L69/22 ,  H04L43/028 ,  H04L43/0876

CPC classification number: H04L69/22 ,  H04L43/028 ,  H04L43/0876

Abstract: The disclosed embodiments provide a system for extracting custom content from network packets. During operation, the system receives a stream of packets. The system then parses packets in the stream to determine a protocol for each packet. Next, the system applies a custom-content-extraction rule to each packet associated with a target protocol to obtain the extracted content. Then, the system stores the extracted content in events in a data store to facilitate subsequent queries involving the extracted content.

公开(公告)号：US11748390B1

公开(公告)日：2023-09-05

申请号：US17575336

申请日：2022-01-13

Applicant: Splunk Inc.

Inventor： Tristan Antonio Fletcher ,  Clint Sharp ,  Anupadmaja Raghavan

IPC: G06F16/00 ,  G06F16/33 ,  G06F16/903 ,  G06F3/0482 ,  G06F3/04842 ,  G06Q10/0639 ,  H04L41/22 ,  H04L41/5009 ,  H04L41/50 ,  H04L43/04 ,  H04L41/069 ,  H04L69/329 ,  H04L9/40 ,  H04L41/0686

CPC classification number: G06F16/334 ,  G06F3/0482 ,  G06F3/04842 ,  G06F16/903 ,  G06Q10/06393 ,  H04L41/069 ,  H04L41/22 ,  H04L41/5009 ,  H04L41/5032 ,  H04L43/04 ,  H04L69/329 ,  H04L41/0686 ,  H04L63/145

Abstract: Technologies are disclosed for providing a common information model. Features include: detecting a scheduled time for a key performance indicator reflecting how a service provided by one or more entities is performing, entity definition information recording the association between the entities and its machine data, service definition information associating the entities that provide the service, and the KPI being defined by a search query, including a field identifier specified in a data model, the KPI derives a value from the machine data; performing the query in response to said detecting, including: associating values in the machine data having disparate field names in accordance with disparate schemas with the field identifier specified in the data model, and processing the associated values as semantically equivalent data instances. In doing so, values having the same semantic (or related semantics) can be used together despite being associated with disparate field names from disparate schemas.

公开(公告)号：US11314759B2

公开(公告)日：2022-04-26

申请号：US16803944

申请日：2020-02-27

Applicant: Splunk Inc.

Inventor： Thomas Allan Haggie ,  Clint Sharp ,  Alexander Douglas James ,  David Ryan Marquardt

IPC: G06F16/00 ,  G06F16/248 ,  G06F16/22 ,  G06F16/25 ,  G06F16/28 ,  G06F16/901 ,  G06F16/951 ,  G06F16/242 ,  G06F16/2455 ,  G06F16/2458 ,  G06F16/835 ,  G06F16/9038 ,  G06F16/9535 ,  G06F16/903 ,  H04L67/025 ,  G06F3/0481 ,  G06T11/20 ,  H04L67/02 ,  H04L43/08

Abstract: The disclosed embodiments include a method performed by a data intake and query system. The method includes populating each metric including a measure value, cataloging metadata in an in-memory metrics catalog, where the metadata is related to the metrics. The method further includes receiving a search query including search criteria, evaluating the search query by applying the search criteria to the metadata of the metrics catalog to obtain results that satisfy the search criteria, and causing display, on a display device, of the results or data indicative of the results.

公开(公告)号：US11275775B2

公开(公告)日：2022-03-15

申请号：US14800678

申请日：2015-07-15

Applicant: Splunk Inc.

Inventor： Tristan Antonio Fletcher ,  Clint Sharp ,  Anupadmaja Raghavan

IPC: G06F16/33 ,  G06F16/903 ,  H04L12/24 ,  H04L12/26 ,  G06Q10/06 ,  G06F3/0482 ,  G06F3/0484 ,  H04L29/08 ,  H04L29/06 ,  H04L41/5009 ,  H04L43/04 ,  H04L41/069 ,  H04L41/50 ,  H04L41/22 ,  G06F3/04842 ,  H04L69/329 ,  H04L41/0686

Abstract: Technologies are disclosed for providing a common information model. Features include: detecting a scheduled time for a key performance indicator reflecting how a service provided by one or more entities is performing, entity definition information recording the association between the entities and its machine data, service definition information associating the entities that provide the service, and the KPI being defined by a search query, including a field identifier specified in a data model, the KPI derives a value from the machine data; performing the query in response to said detecting, including: associating values in the machine data having disparate field names in accordance with disparate schemas with the field identifier specified in the data model, and processing the associated values as semantically equivalent data instances. In doing so, values having the same semantic (or related semantics) can be used together despite being associated with disparate field names from disparate schemas.

公开(公告)号：US11115505B2

公开(公告)日：2021-09-07

申请号：US16404644

申请日：2019-05-06

Applicant: Splunk Inc.

Inventor： Fang I. Hsiao ,  Clayton S. Ching ,  Michael R. Dickey ,  Vladimir A. Shcherbakov ,  Clint Sharp

IPC: H04L29/06 ,  H04L12/26

Abstract: The disclosed embodiments provide a system for extracting custom content from network packets. During operation, the system receives a stream of packets. The system then parses packets in the stream to determine a protocol for each packet. Next, the system applies a custom-content-extraction rule to each packet associated with a target protocol to obtain the extracted content. Then, the system stores the extracted content in events in a data store to facilitate subsequent queries involving the extracted content.

公开(公告)号：US20180241660A1

公开(公告)日：2018-08-23

申请号：US15955990

申请日：2018-04-18

Applicant: Splunk Inc.

Inventor： Tristan Antonio Fletcher ,  Hemendra Singh Choudhary ,  Clint Sharp

IPC: H04L12/26 ,  G06F3/0482 ,  H04L12/24 ,  G06Q10/06 ,  H04L29/08 ,  G06F3/0484

Abstract: Techniques are disclosed for providing an aggregate key performance indicator (KPI) that spans multiple services and for providing adjustment to KPI factors via a GUI that enables an aggregate KPI to be configured with feedback that better characterizes the performance of the services. The GUI may enable selection of KPIs and adjustment to weights (e.g., importance) associated with the KPIs. The weight of a KPI may affect the influence a value of the KPI has on the calculation of an aggregate KPI value (e.g., score). The GUI may provide near real-time feedback concerning the effect the weights have on the aggregate KPI value by displaying the aggregate KPI value (e.g., score) and updating the aggregate KPI value as the weights are adjusted.

公开(公告)号：US20180089288A1

公开(公告)日：2018-03-29

申请号：US15339899

申请日：2016-10-31

Applicant: Splunk Inc.

Inventor： Thomas Allan Haggie ,  Hailun Yan ,  Clint Sharp ,  Marc Andre Chene

IPC: G06F17/30 ,  G06T11/20 ,  G06F3/0481

CPC classification number: G06F16/248 ,  G06F3/0481 ,  G06F16/22 ,  G06F16/2228 ,  G06F16/2255 ,  G06F16/2425 ,  G06F16/2455 ,  G06F16/24568 ,  G06F16/2462 ,  G06F16/2477 ,  G06F16/25 ,  G06F16/285 ,  G06F16/8373 ,  G06F16/901 ,  G06F16/90335 ,  G06F16/9038 ,  G06F16/951 ,  G06F16/9535 ,  G06T11/206 ,  G06T2200/24 ,  H04L43/08 ,  H04L67/02 ,  H04L67/025

Abstract: The disclosed embodiments include a method performed by a data intake and query system. The method includes providing a user interface enabling access to a metrics store, where the metrics store maintains metrics stored in an index, each metric represents a measured value taken of a computing device, and the index defines at least one dimension associated with each measured value. The method further includes receiving an input provided via the user interface to search metric data in the metrics store, causing display, via the user interface, of the metrics data.

公开(公告)号：US20170351720A1

公开(公告)日：2017-12-07

申请号：US15663747

申请日：2017-07-29

Applicant: Splunk Inc.

Inventor： Leonid Alekseyev ,  Brent Boe ,  Clint Sharp

IPC: G06F17/30 ,  G06F3/0484 ,  G06F9/54 ,  H04L12/24

CPC classification number: G06F16/2228 ,  G06F3/0484 ,  G06F9/542 ,  G06F16/168 ,  G06F16/2322 ,  G06F16/245 ,  H04L41/0213 ,  H04L41/22 ,  H04L41/5012 ,  H04L41/5032 ,  H04L41/5045

Abstract: A computer system exposes an interface for the specification of filter criteria. The filter criteria may identify control information of a service monitoring system (SMS) that defines entities in an IT environment monitored by the SMS. An association of identified entities with a monitored service may be made to direct the ongoing operation of the SMS toward the service.

公开(公告)号：US20160103918A1

公开(公告)日：2016-04-14

申请号：US14611198

申请日：2015-01-31

Applicant: Splunk Inc.

Inventor： Leonid Alekseyev ,  Brent Boe ,  Clint Sharp

IPC: G06F17/30 ,  G06F3/0484 ,  G06F3/0482

CPC classification number: G06F3/04842 ,  G06F3/04847 ,  G06F9/44 ,  G06F16/2428 ,  G06Q10/06393 ,  H04L41/0806 ,  H04L41/0879 ,  H04L41/22 ,  H04L41/5009

Abstract: One or more processing devices cause display of a graphical user interface (GUI) enabling a user to specify filter criteria for identifying one or more entity definitions, store the filter criteria in association with a service definition in response to user input, apply the filter criteria to identify one or more entity definitions satisfying the filter criteria, and associate the identified one or more entity definitions with the service definition. The service definition represents a service provided by one or more entities each having a representative entity definition comprising information to identify machine data corresponding to the entity.

Abstract translation: 一个或多个处理设备引起显示图形用户界面（GUI），使得用户能够指定用于识别一个或多个实体定义的过滤器标准，响应于用户输入存储与服务定义相关联的过滤器标准，应用过滤器标准 以识别满足过滤条件的一个或多个实体定义，并将所标识的一个或多个实体定义与服务定义相关联。 服务定义表示由一个或多个实体提供的服务，每个实体具有代表性实体定义，包括用于识别对应于该实体的机器数据的信息。