公开(公告)号：US11714683B1

公开(公告)日：2023-08-01

申请号：US17163320

申请日：2021-01-29

Applicant: Splunk Inc.

Inventor： Jeffery Roberts ,  Matthew Hanson ,  Ryan Connor Means ,  Jeffrey Roecks ,  Taotao Yu

IPC: G06F15/173 ,  G06F9/50 ,  G06F9/455

CPC classification number: G06F9/5027 ,  G06F9/45558 ,  G06F2009/45562 ,  G06F2009/45587

Abstract: A playbook execution architecture used to efficiently execute playbooks by distributing the execution of playbook function blocks to multiple independent “worker” sub-processes is described. Each worker process hosts an independent execution environment used to execute playbook function blocks independently from other worker processes, where each worker process can host an execution environment that is the same as or different from execution environments hosted by other work processes, enabling the playbook execution engine to support function blocks written in multiple different programming language versions or programming languages entirely. The described playbook execution architecture enables an IT and security operations application to vertically scale the computing resources used to execute playbooks, provides users with more control over an amount of computing resources devoted to the execution of playbooks, and enables more expressiveness in the types of actions and efficiency of playbooks by providing support for multiple programming languages and programming language versions.

公开(公告)号：US11699268B1

公开(公告)日：2023-07-11

申请号：US17366599

申请日：2021-07-02

Applicant: SPLUNK INC.

Inventor： Devin Bhushan ,  Jesse Chor ,  Glen Wong ,  Stanislav Yazhenskikh ,  Jim Zhu

IPC: G06F3/0481 ,  G06T19/20 ,  G06T19/00 ,  G06F3/04815 ,  G06F3/0482 ,  G06F3/04845

CPC classification number: G06T19/006 ,  G06F3/0482 ,  G06F3/04815 ,  G06F3/04845 ,  G06T19/20 ,  G06T2200/24 ,  G06T2219/008 ,  G06T2219/2004 ,  G06T2219/2016

Abstract: An extended reality (XR) system includes an extended reality application executing on a processor within the XR system. The XR system receives, via a client device, a selection of an extended reality (XR) object located within an XR environment. The XR system receives, via the client device, a request to move the selected XR object within the XR environment. The XR system calculates a first distance between a first feature of the XR object and a first plane associated with a first physical object within the XR environment. The XR system determines that the first distance is within a particular distance. In response to determining that the first distance is within the particular distance, the XR system positions the first feature within the XR environment such that the first feature is coplanar with the first plane.

公开(公告)号：US11698913B2

公开(公告)日：2023-07-11

申请号：US17653343

申请日：2022-03-03

Applicant: Splunk Inc.

Inventor： Joerg Beringer ,  Isabelle Park

IPC: G06F16/248 ,  G06F16/2457

CPC classification number: G06F16/248 ,  G06F16/2457

Abstract: Systems and methods are disclosed for cross-system journey modeling based on relation of machine data. An example method includes obtaining information describing a user journey that includes multiple steps, each step corresponding to a query to be applied to one or more field-searchable data stores storing events, each event including a portion of machine data that reflects activity in an information technology environment and that is produced by a component of that information technology environment, and each event being associated with a timestamp extracted from the portion of machine data of that event. Events returned as a result of the query of each step are related. The results of the relating are displayed.

公开(公告)号：US11693895B1

公开(公告)日：2023-07-04

申请号：US17743434

申请日：2022-05-12

Applicant: Splunk Inc.

Inventor： Sara Alspaugh ,  Adam Jamison Oliner

IPC: G06T11/20 ,  G06F16/35 ,  G06F9/54 ,  G06N5/04 ,  G06F16/31 ,  G06F16/901

CPC classification number: G06F16/358 ,  G06F9/542 ,  G06F16/328 ,  G06F16/9024 ,  G06N5/04 ,  G06T11/206

Abstract: Machine data reflecting operation of a monitored system is ingested and made available for search by a data intake and query system (DIQS). Monitoring includes obtaining a subset of ordered events that are assigned to a task. In a graphical user interface on a display, a chart for the task is displayed. The chart includes an event identifier for each event of the subset of the ordered events, a confidence level value related to each event identifier of each event of the subset of ordered events, the confidence level value indicating the confidence level that the event is in the task. The chart further includes a time reference value identifying a time of each event.

公开(公告)号：US11693871B1

公开(公告)日：2023-07-04

申请号：US17895710

申请日：2022-08-25

Applicant: Splunk Inc.

Inventor： Dharmalingam Madheswaran

IPC: G06F16/24 ,  G06F16/248 ,  H04L41/22 ,  G06F16/245 ,  G06F16/28 ,  G06F16/25 ,  G06F9/451 ,  G06F16/22

CPC classification number: G06F16/248 ,  G06F9/451 ,  G06F16/22 ,  G06F16/245 ,  G06F16/252 ,  G06F16/285 ,  H04L41/22

Abstract: An example method comprises: causing display of a user interface comprising a plurality of dynamic elements, the user interface to facilitate configuring a search frequency for metrics associated with the plurality of dynamic elements, wherein each metric represents a respective point in time or a period of time and is derived from a metric-time search of machine data associated with a respective asset node; and for each dynamic element of the plurality of dynamic elements: receiving, via the user interface, a search frequency for a metric associated with the dynamic element; and determining a value of the metric by executing, according to the search frequency for the metric, a search query associated with the dynamic element.

公开(公告)号：US11689536B1

公开(公告)日：2023-06-27

申请号：US17490891

申请日：2021-09-30

Applicant: Splunk Inc.

Inventor： Leonid Igolnik ,  Ramachandran Jothikumar ,  Karthik Rau

IPC: G06F15/16 ,  H04L9/40 ,  G06F8/60 ,  H04L67/1095 ,  H04L67/1001

CPC classification number: H04L63/102 ,  G06F8/60 ,  H04L63/0815 ,  H04L67/1001 ,  H04L67/1095

Abstract: According to embodiments, a method for distributing a service through server-based restricted access storage includes executing, by a service provider, a service deployment of the service to a client in a cloud environment that operates client software in addition to the service deployment, the cloud environment provided by the client, the service deployment provided by the service provider and separate from the client software executing in the cloud environment. The method also includes receiving, by the service provider, privileges from the client to allow the service provider to access and operate the service in the cloud environment, the privileges providing access to the cloud environment separate from the client software executing in the cloud environment. The method also includes configuring the service deployment to monitor the client software, wherein the service deployment is partially isolated from other portions of the cloud environment.

公开(公告)号：US11687438B1

公开(公告)日：2023-06-27

申请号：US17248612

申请日：2021-01-29

Applicant: Splunk Inc.

Inventor： Ian Edward Torbett ,  Lila Fridley ,  Tristan Antonio Fletcher ,  Ayyappa Muthusami ,  Tanner Gilligan

IPC: G06F11/34 ,  G06F11/30 ,  G06F11/32

CPC classification number: G06F11/3466 ,  G06F11/3075 ,  G06F11/324 ,  G06F11/3428

Abstract: Systems and methods are described for performing adaptive thresholding on key performance indicator (KPI) values using an online machine learning algorithm as the KPI values or the data from which the KPI values are derived is being ingested. For example, the system can identify outliers in a moving window of KPI values. To implement the adaptive thresholding, the system may identify seasonality and/or trend components in historical KPI values. When a new KPI value is obtained, the system may remove the identified seasonality and/or trend components from the KPI value, and determine whether the modified KPI value is an outlier using sketches or quantiles. The system can then repeat this process for each subsequently received KPI value.

公开(公告)号：USD989794S1

公开(公告)日：2023-06-20

申请号：US29811914

申请日：2021-10-18

Applicant: SPLUNK Inc.

Designer： Tatsuya Hama ,  Vanessa Jaber

Abstract: The sole FIGURE is a front view of a display screen or portion thereof having a graphical user interface for a link to a data interface showing our new design.
The broken lines depict portions of the display screen or portion thereof having a graphical user interface for a link to a data interface in which the design is embodied that form no part of the claimed design.

公开(公告)号：USD989792S1

公开(公告)日：2023-06-20

申请号：US29811910

申请日：2021-10-18

Applicant: SPLUNK Inc.

Designer： Tatsuya Hama ,  Vanessa Jaber

Abstract: The sole FIGURE is a front view of a display screen or portion thereof having a graphical user interface for a link to a security interface showing our new design.
The broken lines depict portions of the display screen or portion thereof having a graphical user interface for a link to a security interface in which the design is embodied that form no part of the claimed design.

公开(公告)号：US11677760B2

公开(公告)日：2023-06-13

申请号：US16944433

申请日：2020-07-31

Applicant: Splunk Inc.

Inventor： Banipal Shahbaz ,  Siri Atma Oaklander De Licori ,  John Robert Coates ,  David Hazekamp ,  Devendra Badhani ,  Luke Murphey ,  Patrick Schulz

IPC: G06F21/55 ,  H04L9/40 ,  G06F21/53 ,  G06F16/248 ,  G06F16/26

CPC classification number: H04L63/1416 ,  G06F21/53 ,  G06F21/554 ,  H04L63/145 ,  H04L63/1458 ,  H04L63/1475 ,  G06F16/248 ,  G06F16/26 ,  G06F2221/2151 ,  H04L2463/121 ,  H04L2463/141

Abstract: Techniques and mechanisms are disclosed for configuring actions to be performed by a network security application in response to the detection of potential security incidents, and for causing a network security application to report on the performance of those actions. For example, users may use such a network security application to configure one or more “modular alerts.” As used herein, a modular alert generally represents a component of a network security application which enables users to specify security modular alert actions to be performed in response to the detection of defined triggering conditions, and which further enables tracking information related to the performance of modular alert actions and reporting on the performance of those actions.