利索-全球专利检索

  1. 登录
  2. 注册

搜索结果

51 条记录 (耗时 0.034 秒)

    Systems and methods for discovering mutual dependence patterns
    2.
    发明授权
    Systems and methods for discovering mutual dependence patterns 有权
    发现相互依赖模式的系统和方法

    公开(公告)号:US06829608B2

    公开(公告)日:2004-12-07

    申请号:US09918253

    申请日:2001-07-30

    申请人: Sheng Ma Joseph L. Hellerstein

    发明人: Sheng Ma Joseph L. Hellerstein

    IPC分类号: G06F1730

    CPC分类号: G06F7/02 G06F2207/025 Y10S707/99931 Y10S707/99936 Y10S707/99937 Y10S707/99942

    摘要: A new form of pattern is provided, referred to as a mutual dependence pattern or m-pattern. The m-pattern captures mutual dependence among a set of items. Intuitively, the m-pattern represents a set of items that often occur together. In our experience, such m-patterns often provide great values for certain tasks, such as event correlation in event management. Further, an efficient algorithm is provided for discovering all m-patterns in data for a given minimum mutual dependence threshold. Specifically, a linear algorithm is provided for testing whether a pattern is an m-pattern. Further, a pruning algorithm is provided that prunes the search space effectively. Still further, a level-wise algorithm for mining m-patterns is provided.

    摘要翻译: 提供了一种新的图案形式,称为相互依赖模式或m模式。 m模式捕获一组项目之间的相互依赖。 直观地,m模式表示经常一起出现的一组项目。 在我们的经验中,这种m模式通常为某些任务提供很大的价值,例如事件管理中的事件相关性。 此外,提供了一种用于针对给定的最小相互依赖阈值发现数据中的所有m模式的有效算法。 具体地说,提供一种用于测试图案是否是m图案的线性算法。 此外,还提供了一种有效修剪搜索空间的修剪算法。 此外,提供了用于挖掘m图案的级别算法。

    Systems and methods for authoring and executing operational policies that use event rates
    3.
    发明授权
    Systems and methods for authoring and executing operational policies that use event rates 有权
    制作和执行使用事件发生率的操作策略的系统和方法

    公开(公告)号:US06792456B1

    公开(公告)日:2004-09-14

    申请号:US09567445

    申请日:2000-05-08

    申请人: Joseph L. Hellerstein Sheng Ma

    发明人: Joseph L. Hellerstein Sheng Ma

    IPC分类号: G06F15173

    CPC分类号: G06F11/0739 G06F11/0709 G06F11/076 G06F11/079 H04L41/0631 H04L41/0893

    摘要: Systems and methods are described for the execution and authoring of policies that use event rates for event management. The first system addresses policy execution. Included in this system are: a controller that provides overall operational control, a grouping engine, a rate detector, and a rate diagnoser. The second system automates the construction of event rate policies based on primary information sources (e.g., topology, inventory). The components of this system include: an authoring user interface, source-specific hierarchy generators, an event group generator and hierarchy builder, and a threshold constructor.

    摘要翻译: 描述了用于执行和创作使用事件管理事件率的策略的系统和方法。 第一个系统处理策略执行。 该系统包括:提供总体操作控制的控制器,分组引擎,速率检测器和速率诊断器。 第二个系统基于主要信息源(例如,拓扑,库存)自动构建事件速率策略。 该系统的组件包括:创作用户界面,特定于源的层次结构生成器,事件组生成器和层次结构生成器以及阈值构造函数。

    System and method for systematic construction of correlation rules for event management
    4.
    发明授权
    System and method for systematic construction of correlation rules for event management 失效
    系统建立事件管理相关规则的系统和方法

    公开(公告)号:US06697791B2

    公开(公告)日:2004-02-24

    申请号:US09849565

    申请日:2001-05-04

    申请人: Joseph L. Hellerstein Sheng Ma Luanne M. Burns Chang-shing Perng David A. Rabenhorst

    发明人: Joseph L. Hellerstein Sheng Ma Luanne M. Burns Chang-shing Perng David A. Rabenhorst

    IPC分类号: G06F1700

    CPC分类号: G06N5/025

    摘要: A technique is provided for systematically constructing one or more correlation rules for use by an event management system for managing a network with one or more computing devices. The technique comprises the following steps. First, in association with an event cache, event data representing past or historical events associated with the network of computing devices being managed by the event management system is obtained. Next, a first pattern is found or detected in the obtained event data associated with the event cache. The pattern is then classified. Then, at least one correlation rule is constructed based on the classified pattern. Lastly, in association with the event cache, the one or more events included in the pattern are replaced with a composite or cumulative event such that hierarchical patterns may be subsequently found for use in constructing further correlation rules.

    摘要翻译: 提供了一种用于系统地构建一个或多个相关规则以供事件管理系统用于使用一个或多个计算设备管理网络的技术。 该技术包括以下步骤。 首先,与事件缓存相关联,获得表示由事件管理系统管理的与计算设备的网络相关联的过去或历史事件的事件数据。 接下来,在与事件高速缓存相关联的所获得的事件数据中找到或检测到第一模式。 然后将模式分类。 然后,基于分类模式构建至少一个相关规则。 最后,与事件缓存相关联,包含在模式中的一个或多个事件被替换为复合或累积事件,使得随后可以发现分级模式用于构建进一步的相关规则。

    Apparata, articles and methods for discovering partially periodic event patterns
    5.
    发明授权
    Apparata, articles and methods for discovering partially periodic event patterns 有权
    用于发现部分周期性事件模式的Apparata,文章和方法

    公开(公告)号:US06996551B2

    公开(公告)日:2006-02-07

    申请号:US09739432

    申请日:2000-12-18

    申请人: Joseph L. Hellerstein Sheng Ma

    发明人: Joseph L. Hellerstein Sheng Ma

    IPC分类号: G06F17/00 G06F17/30 G06N5/00 G06N5/02

    CPC分类号: G06K9/62 G06F11/3452 G06F2201/86 G06F2201/88 G06F2216/03 Y10S707/99936

    摘要: Apparata, articles and methods for discovering partially periodic temporal associations, referred to herein as p-patterns, are provided. For example, a p-pattern in computer networks might comprise five repetitions every 30 seconds of a port-down event followed by a port-up event, which in turn is followed by a random gap until the next five repetitions of these events. In one embodiment, the present invention comprises: (i) a normalization step to convert application-oriented event data into an application-independent normalized table; (ii) an algorithm for finding significant period lengths from normalized events (e.g., 30 seconds) using a Chi-squared test; and (iii) an algorithm for finding a partially periodic temporal association (e.g., port-down followed by port-up) given a known period.

    摘要翻译: 提供了用于发现部分周期性时间关联的规范,文章和方法,这里称为p模式。 例如,计算机网络中的p模式可能包含五次重复,每隔30秒进行一次停机事件,随后是一个端口事件,随后又是一个随机的间隙,直到这些事件的下一个五次重复。 在一个实施例中,本发明包括:(i)将面向应用的事件数据转换成与应用无关的标准化表的归一化步骤; (ii)使用卡方检验从归一化事件(例如,30秒)发现重要的周期长度的算法; 以及(iii)用于在给定已知周期的情况下找到部分周期性时间关联(例如,关闭后端口)的算法。

    Systems and methods for pairwise analysis of event data
    6.
    发明授权
    Systems and methods for pairwise analysis of event data 有权
    事件数据成对分析的系统和方法

    公开(公告)号:US06697802B2

    公开(公告)日:2004-02-24

    申请号:US09976574

    申请日:2001-10-12

    申请人: Sheng Ma Genady Grabarnik Joseph L. Hellerstein Chang-Shing Perng

    发明人: Sheng Ma Genady Grabarnik Joseph L. Hellerstein Chang-Shing Perng

    IPC分类号: G06F1700

    CPC分类号: G06F17/30595 Y10S707/99934 Y10S707/99935 Y10S707/99936

    摘要: Techniques for mining or discovering one or more patterns in an input data set, wherein the input data set is characterized by attributes, comprises the following steps. First, the technique includes mapping attributes of the input data set to mapping values. Then, one or more candidate patterns are formed as groupings of two mapping values that occur within a predefined time period. Next, for each of the one or more candidate patterns, a qualification function is computed and a result of the qualification function is compared with at least one predefined threshold value. The one or more candidate patterns whose qualification function results are greater than or equal to the predefined threshold value are identified as one or more qualified patterns.

    摘要翻译: 用于在输入数据集中挖掘或发现一个或多个模式的技术,其中所述输入数据集由属性表征,包括以下步骤。 首先,该技术包括将输入数据集的属性映射到映射值。 然后,形成一个或多个候选模式作为在预定时间段内出现的两个映射值的分组。 接下来,对于一个或多个候选模式中的每一个,计算资格功能,并将资格功能的结果与至少一个预定义的阈值进行比较。 其资格功能结果大于或等于预定阈值的一个或多个候选模式被识别为一个或多个合格模式。

    Systems and methods for exploratory analysis of data for event management
    9.
    发明授权
    Systems and methods for exploratory analysis of data for event management 失效
    用于事件管理数据的探索性分析的系统和方法

    公开(公告)号:US06836894B1

    公开(公告)日:2004-12-28

    申请号:US09359874

    申请日:1999-07-27

    申请人: Joseph L. Hellerstein Sheng Ma Steven S. Demion

    发明人: Joseph L. Hellerstein Sheng Ma Steven S. Demion

    IPC分类号: G06F946

    CPC分类号: G06F11/323

    摘要: Systems and methods are provided for exploratory analysis of event messages. The invention includes a parsing engine to translate textual messages into structured event data, a selection and control engine (SCE) to provide data management and communication channels for a set of analysis methods, and viewers to support different kinds of analysis methods. The invention further includes a mechanism for viewers to exchange information, a mechanism for interactively and iteratively refining parsing rules, and a mechanism to visualize events through event graphs.

    摘要翻译: 提供系统和方法用于对事件消息进行探索性分析。 本发明包括将文本消息翻译成结构化事件数据的解析引擎,选择和控制引擎(SCE),以提供用于一组分析方法的数据管理和通信信道,以及支持不同种类的分析方法的观看者。 本发明还包括用于交换信息的观看者的机制,用于交互地和迭代地提炼解析规则的机制,以及通过事件图形来可视化事件的机制。

    Method and system for machine-aided rule construction for event management
    10.
    发明授权
    Method and system for machine-aided rule construction for event management 有权
    用于事件管理的机器辅助规则构建方法和系统

    公开(公告)号:US07814194B2

    公开(公告)日:2010-10-12

    申请号:US09731937

    申请日:2000-12-07

    申请人: Joseph L. Hellerstein Sheng Ma David A. Rabenhorst

    发明人: Joseph L. Hellerstein Sheng Ma David A. Rabenhorst

    IPC分类号: G06F15/173

    CPC分类号: H04L41/16 H04L41/0631

    摘要: Methods and systems are described for learning correlation rules used in event management. In one aspect of the invention, a method comprises the steps of: (a) marking one or more event groupings; (b) employing a machine learning program to learn the underlying concept of these groupings; (c) including a rule right-hand side; and (d) putting the new rule in the Rule DB. A system to implement this method may comprise components for: (1) interactive visualization and user interface control; (2) query-based learning; (3) Event DB access; and (4) correlation Rule DB access.

    摘要翻译: 描述了用于学习事件管理中使用的相关规则的方法和系统。 在本发明的一个方面,一种方法包括以下步骤:(a)标记一个或多个事件分组; (b)采用机器学习计划来了解这些分组的基本概念; (c)包括右边的规则; 和(d)将新规则放在规则DB中。 实现该方法的系统可以包括用于:(1)交互式可视化和用户界面控制的组件; (2)基于查询的学习; (3)事件DB访问; 和(4)相关规则DB访问。