公开(公告)号：US11316882B2

公开(公告)日：2022-04-26

申请号：US16944127

申请日：2020-07-30

Applicant: Splunk Inc.

Inventor： Nicholas J. Filippi ,  Siegfried Puchbauer-Schnabel ,  Carl S. Yestrau ,  Vivian Shen ,  J. Mathew Elting

IPC: H04L29/06 ,  G06F9/54 ,  G06F16/21 ,  G06F16/33 ,  G06F16/903 ,  H04L67/02 ,  H04L41/0686 ,  H04L51/23 ,  H04L41/22 ,  H04L65/65

Abstract: The disclosed embodiments relate to a system that generates an alert based on information extracted from search results generated by a query. During operation, the system executes the query to generate the search results. The system also obtains configuration information for the alert, wherein the configuration information identifies information associated with the search results, and also specifies a trigger condition for the alert. Next, when the trigger condition for the alert is met, the system uses the configuration information to generate a payload containing the identified information associated with the search results. The system then invokes alert-generating functionality and provides the payload as input to the alert-generating functionality. This enables the alert-generating functionality to use the information from the search results while performing one or more alert actions association with the alert.

公开(公告)号：US20210037036A1

公开(公告)日：2021-02-04

申请号：US16944127

申请日：2020-07-30

Applicant: Splunk Inc.

Inventor： Nicholas J. Filippi ,  Siegfried Puchbauer-Schnabel ,  Carl S. Yestrau ,  Vivian Shen ,  J. Mathew Elting

IPC: H04L29/06 ,  G06F9/54 ,  G06F16/21 ,  G06F16/33 ,  G06F16/903 ,  H04L29/08 ,  H04L12/24 ,  H04L12/58

Abstract: The disclosed embodiments relate to a system that generates an alert based on information extracted from search results generated by a query. During operation, the system executes the query to generate the search results. The system also obtains configuration information for the alert, wherein the configuration information identifies information associated with the search results, and also specifies a trigger condition for the alert. Next, when the trigger condition for the alert is met, the system uses the configuration information to generate a payload containing the identified information associated with the search results. The system then invokes alert-generating functionality and provides the payload as input to the alert-generating functionality. This enables the alert-generating functionality to use the information from the search results while performing one or more alert actions association with the alert.

公开(公告)号：US20210026849A1

公开(公告)日：2021-01-28

申请号：US17063444

申请日：2020-10-05

Applicant: SPLUNK INC.

Inventor： Nicholas J. Filippi ,  Siegfried Puchbauer-Schnabel ,  Carl S. Yestrau ,  Vivian Shen ,  J. Mathew Elting

IPC: G06F16/248 ,  G06F3/0484

Abstract: A system that enables a user to configure alert actions based on search results generated by a query is disclosed. During operation, the system presents an alert user interface (UI) to a user, wherein the alert UI enables the user to configure one or more alert actions to be performed based on the search results. Next, the system receives alert configuration information from the user through the alert UI, wherein the alert configuration information includes tokens representing parameters associated with the query and the search results. Then, while generating an alert associated with the search results, the system performs a token substitution operation that substitutes tokens in the alert configuration information with corresponding parameters from the search results to generate a payload that is communicated to alert-generating functionality. This token substitution allows the parameters to be used by the alert-generating functionality while performing the one or more alert actions.

公开(公告)号：US09922097B2

公开(公告)日：2018-03-20

申请号：US14698716

申请日：2015-04-28

Applicant: Splunk Inc.

Inventor： Nicholas J. Filippi ,  Siegfried Puchbauer-Schnabel ,  Carl S. Yestrau ,  Vivian Shen ,  J. Mathew Elting

IPC: G06F17/30 ,  G06F3/0484

CPC classification number: G06F17/30554 ,  G06F3/04842 ,  G06F3/04847

Abstract: A system that enables a user to configure alert actions based on search results generated by a query is disclosed. During operation, the system presents an alert user interface (UI) to a user, wherein the alert UI enables the user to configure one or more alert actions to be performed based on the search results. Next, the system receives alert configuration information from the user through the alert UI, wherein the alert configuration information includes tokens representing parameters associated with the query and the search results. Then, while generating an alert associated with the search results, the system performs a token substitution operation that substitutes tokens in the alert configuration information with corresponding parameters from the search results to generate a payload that is communicated to alert-generating functionality. This token substitution allows the parameters to be used by the alert-generating functionality while performing the one or more alert actions.

公开(公告)号：US20170237761A1

公开(公告)日：2017-08-17

申请号：US15499852

申请日：2017-04-27

Applicant: Splunk Inc.

Inventor： Nicholas J. Filippi ,  Siegfried Puchbauer-Schnabel ,  Carl S. Yestrau ,  Vivian Shen ,  J. Mathew Elting

IPC: H04L29/06 ,  H04L12/58 ,  H04L12/24 ,  G06F17/30 ,  G06F9/54

CPC classification number: H04L63/1425 ,  G06F9/542 ,  G06F17/30289 ,  G06F17/30657 ,  G06F17/30985 ,  H04L41/0686 ,  H04L41/22 ,  H04L51/30 ,  H04L65/608 ,  H04L67/02

Abstract: The disclosed embodiments relate to a system that generates an alert based on information extracted from search results generated by a query. During operation, the system executes the query to generate the search results. The system also obtains configuration information for the alert, wherein the configuration information identifies information associated with the search results, and also specifies a trigger condition for the alert. Next, when the trigger condition for the alert is met, the system uses the configuration information to generate a payload containing the identified information associated with the search results. The system then invokes alert-generating functionality and provides the payload as input to the alert-generating functionality. This enables the alert-generating functionality to use the information from the search results while performing one or more alert actions association with the alert.

公开(公告)号：US09667640B2

公开(公告)日：2017-05-30

申请号：US14698724

申请日：2015-04-28

Applicant: Splunk Inc.

Inventor： Nicholas J. Filippi ,  Siegfried Puchbauer-Schnabel ,  Carl S. Yestrau ,  Vivian Shen ,  J. Mathew Elting

IPC: G06F11/00 ,  G06F12/14 ,  G06F12/16 ,  G08B23/00 ,  H04L29/06 ,  G06F9/54 ,  H04L29/08 ,  G06F17/30

CPC classification number: H04L63/1425 ,  G06F9/542 ,  G06F17/30289 ,  G06F17/30657 ,  G06F17/30985 ,  H04L41/0686 ,  H04L41/22 ,  H04L51/30 ,  H04L65/608 ,  H04L67/02

Abstract: The disclosed embodiments relate to a system that generates an alert based on information extracted from search results generated by a query. During operation, the system executes the query to generate the search results. The system also obtains configuration information for the alert, wherein the configuration information identifies information associated with the search results, and also specifies a trigger condition for the alert. Next, when the trigger condition for the alert is met, the system uses the configuration information to generate a payload containing the identified information associated with the search results. The system then invokes alert-generating functionality and provides the payload as input to the alert-generating functionality. This enables the alert-generating functionality to use the information from the search results while performing one or more alert actions association with the alert.

公开(公告)号：US11995094B2

公开(公告)日：2024-05-28

申请号：US17063444

申请日：2020-10-05

Applicant: SPLUNK INC.

Inventor： Nicholas J. Filippi ,  Siegfried Puchbauer-Schnabel ,  Carl S. Yestrau ,  Vivian Shen ,  J. Mathew Elting

IPC: G06F16/248 ,  G06F3/04842 ,  G06F3/04847 ,  G06F16/245 ,  G06F16/2455 ,  G06F16/2458 ,  G06F16/25 ,  G06F16/11 ,  G06F16/16 ,  G06F16/9535

CPC classification number: G06F16/248 ,  G06F3/04842 ,  G06F3/04847 ,  G06F16/245 ,  G06F16/2455 ,  G06F16/2477 ,  G06F16/254 ,  G06F16/125 ,  G06F16/162 ,  G06F16/9535

Abstract: A system that enables a user to configure alert actions based on search results generated by a query is disclosed. During operation, the system presents an alert user interface (UI) to a user, wherein the alert UI enables the user to configure one or more alert actions to be performed based on the search results. Next, the system receives alert configuration information from the user through the alert UI, wherein the alert configuration information includes tokens representing parameters associated with the query and the search results. Then, while generating an alert associated with the search results, the system performs a token substitution operation that substitutes tokens in the alert configuration information with corresponding parameters from the search results to generate a payload that is communicated to alert-generating functionality. This token substitution allows the parameters to be used by the alert-generating functionality while performing the one or more alert actions.

公开(公告)号：US10778710B2

公开(公告)日：2020-09-15

申请号：US16177394

申请日：2018-10-31

Applicant: Splunk Inc.

Inventor： Nicholas J. Filippi ,  Siegfried Puchbauer-Schnabel ,  Carl S. Yestrau ,  Vivian Shen ,  J. Mathew Elting

IPC: H04L29/06 ,  G06F9/54 ,  G06F16/21 ,  G06F16/33 ,  G06F16/903 ,  H04L29/08 ,  H04L12/24 ,  H04L12/58

Abstract: The disclosed embodiments relate to a system that generates an alert based on information extracted from search results generated by a query. During operation, the system executes the query to generate the search results. The system also obtains configuration information for the alert, wherein the configuration information identifies information associated with the search results, and also specifies a trigger condition for the alert. Next, when the trigger condition for the alert is met, the system uses the configuration information to generate a payload containing the identified information associated with the search results. The system then invokes alert-generating functionality and provides the payload as input to the alert-generating functionality. This enables the alert-generating functionality to use the information from the search results while performing one or more alert actions association with the alert.

公开(公告)号：US20160323306A1

公开(公告)日：2016-11-03

申请号：US14698724

申请日：2015-04-28

Applicant: Splunk Inc.

Inventor： Nicholas J. Filippi ,  Siegfried Puchbauer-Schnabel ,  Carl S. Yestrau ,  Vivian Shen ,  J. Mathew Elting

IPC: H04L29/06 ,  G06F9/54 ,  G06F17/30

CPC classification number: H04L63/1425 ,  G06F9/542 ,  G06F17/30289 ,  G06F17/30657 ,  G06F17/30985 ,  H04L41/0686 ,  H04L41/22 ,  H04L51/30 ,  H04L65/608 ,  H04L67/02

Abstract: The disclosed embodiments relate to a system that generates an alert based on information extracted from search results generated by a query. During operation, the system executes the query to generate the search results. The system also obtains configuration information for the alert, wherein the configuration information identifies information associated with the search results, and also specifies a trigger condition for the alert. Next, when the trigger condition for the alert is met, the system uses the configuration information to generate a payload containing the identified information associated with the search results. The system then invokes alert-generating functionality and provides the payload as input to the alert-generating functionality. This enables the alert-generating functionality to use the information from the search results while performing one or more alert actions association with the alert.

Abstract translation: 所公开的实施例涉及基于从查询生成的搜索结果中提取的信息生成警报的系统。 在运行期间，系统执行查询以生成搜索结果。 系统还获取警报的配置信息，其中配置信息识别与搜索结果相关联的信息，并且还指定警报的触发条件。 接下来，当满足警报的触发条件时，系统使用配置信息来生成包含与搜索结果相关联的识别信息的有效载荷。 然后系统调用警报生成功能，并将有效负载作为警报生成功能的输入。 这使得警报生成功能能够在执行与警报相关联的一个或多个警报动作时使用来自搜索结果的信息。

公开(公告)号：US20160321327A1

公开(公告)日：2016-11-03

申请号：US14698716

申请日：2015-04-28

Applicant: Splunk Inc.

Inventor： Nicholas J. Filippi ,  Siegfried Puchbauer-Schnabel ,  Carl S. Yestrau ,  Vivian Shen ,  J. Mathew Elting

IPC: G06F17/30 ,  G06F3/0484

CPC classification number: G06F17/30554 ,  G06F3/04842 ,  G06F3/04847

Abstract: A system that enables a user to configure alert actions based on search results generated by a query is disclosed. During operation, the system presents an alert user interface (UI) to a user, wherein the alert UI enables the user to configure one or more alert actions to be performed based on the search results. Next, the system receives alert configuration information from the user through the alert UI, wherein the alert configuration information includes tokens representing parameters associated with the query and the search results. Then, while generating an alert associated with the search results, the system performs a token substitution operation that substitutes tokens in the alert configuration information with corresponding parameters from the search results to generate a payload that is communicated to alert-generating functionality. This token substitution allows the parameters to be used by the alert-generating functionality while performing the one or more alert actions.

Abstract translation: 公开了一种使得用户能够基于由查询产生的搜索结果来配置警报动作的系统。 在操作期间，系统向用户呈现警报用户界面（UI），其中警报UI使得用户能够基于搜索结果来配置要执行的一个或多个警报动作。 接下来，系统通过警报UI从用户接收警报配置信息，其中警报配置信息包括表示与查询和搜索结果相关联的参数的令牌。 然后，在生成与搜索结果相关联的警报的同时，系统执行令牌替换操作，其将具有来自搜索结果的相应参数的警报配置信息中的令牌代替，以生成传达给警报生成功能的有效载荷。 该令牌替换允许在执行一个或多个警报动作时由警报生成功能使用参数。