公开(公告)号：US20200167681A1

公开(公告)日：2020-05-28

申请号：US16776302

申请日：2020-01-29

Applicant: SPLUNK INC.

Inventor： NGHI NGUYEN ,  JACOB LEVERICH ,  ADAM OLINER

IPC: G06N7/00

Abstract: Methods and systems for determining event probabilities and anomalous events are provided. In one implementation, a method includes: receiving source data, where the source data is configured as a plurality of events with associated timestamps; searching the source data, where the searching provides a search result including N events from the plurality of events, where N is an integer greater than one, where each event of the N events includes a plurality of field values, where at least one event of the N events can include one or more categorical field values and one or more numerical field values; and for an event of the N events, determining a probability of occurrence for each field value of the plurality of field values; and using probabilities determined for the plurality of field values, determining a probability of occurrence for the event.

公开(公告)号：US20180032557A1

公开(公告)日：2018-02-01

申请号：US15582473

申请日：2017-04-28

Applicant: SPLUNK INC.

Inventor： ADAM OLINER

IPC: G06F17/30

CPC classification number: G06F16/43 ,  G06F16/438

Abstract: Described herein are technologies that facilitate effective use (e.g., indexing and searching) of non-text machine data (e.g., audio/visual data) in an event-based machine-data intake and query system.

公开(公告)号：US20180314853A1

公开(公告)日：2018-11-01

申请号：US15582465

申请日：2017-04-28

Applicant: SPLUNK INC.

Inventor： ADAM OLINER ,  Nghi Nguyen

IPC: G06F21/62 ,  G06F17/30

Abstract: Implementations include receiving a user provided example value of personally identifiable information (PII). Occurrences of the received example value are automatically identified in a dataset of events, wherein each occurrence is identified in a portion of raw machine data of a respective event of the events. For each occurrence of the identified occurrences, an extraction rule is generated, which defines a pattern of the occurrence of the example value and is executable to identify PII values in portions of raw machine data of the events using the pattern. Values of the PII are identified in a set of events using a set of extraction rules comprising the extraction rule of a plurality of the occurrences.

公开(公告)号：US20210110062A1

公开(公告)日：2021-04-15

申请号：US17128522

申请日：2020-12-21

Applicant: SPLUNK Inc.

Inventor： ADAM OLINER ,  Nghi Nguyen

IPC: G06F21/62 ,  G06F16/2458

Abstract: Implementations include receiving a user provided example value of personally identifiable information (PII). Occurrences of the received example value are automatically identified in a dataset of events, wherein each occurrence is identified in a portion of raw machine data of a respective event of the events. For each occurrence of the identified occurrences, an extraction rule is generated, which defines a pattern of the occurrence of the example value and is executable to identify PII values in portions of raw machine data of the events using the pattern. Values of the PII are identified in a set of events using a set of extraction rules comprising the extraction rule of a plurality of the occurrences.

公开(公告)号：US20180032558A1

公开(公告)日：2018-02-01

申请号：US15664991

申请日：2017-07-31

Applicant: SPLUNK, Inc.

Inventor： ADAM OLINER

IPC: G06F17/30

CPC classification number: G06F16/43 ,  G06F16/438

Abstract: Described herein are technologies that facilitate effective use (e.g., indexing and searching) of non-text machine data (e.g., audio/visual data) in an event-based machine-data intake and query system.

公开(公告)号：US20210209145A1

公开(公告)日：2021-07-08

申请号：US17163883

申请日：2021-02-01

Applicant: SPLUNK Inc.

Inventor： ADAM OLINER

IPC: G06F16/43 ,  G06F16/438

Abstract: Described herein are technologies that facilitate effective use (e.g., indexing and searching) of non-text machine data (e.g., audio/visual data) in an event-based machine-data intake and query system.

公开(公告)号：US20160224899A1

公开(公告)日：2016-08-04

申请号：US14609135

申请日：2015-01-29

Applicant: SPLUNK INC.

Inventor： NGHI NGUYEN ,  JACOB LEVERICH ,  ADAM OLINER

IPC: G06N7/00 ,  G06N5/02

CPC classification number: G06N7/005

Abstract: Methods and systems for determining event probabilities and anomalous events are provided. In one implementation, a method includes: receiving source data, where the source data is configured as a plurality of events with associated timestamps; searching the source data, where the searching provides a search result including N events from the plurality of events, where N is an integer greater than one, where each event of the N events includes a plurality of field values, where at least one event of the N events can include one or more categorical field values and one or more numerical field values; and for an event of the N events, determining a probability of occurrence for each field value of the plurality of field values; and using probabilities determined for the plurality of field values, determining a probability of occurrence for the event.

Abstract translation: 提供了确定事件概率和异常事件的方法和系统。 在一个实现中，一种方法包括：接收源数据，其中源数据被配置为具有相关联的时间戳的多个事件; 搜索源数据，其中搜索提供包括来自多个事件的N个事件的搜索结果，其中N是大于1的整数，其中N个事件的每个事件包括多个字段值，其中至少一个事件 N个事件可以包括一个或多个分类字段值和一个或多个数字字段值; 并且对于N个事件的事件，确定多个字段值的每个字段值的出现概率; 以及使用为所述多个场值确定的概率，确定所述事件的发生概率。