公开(公告)号：US11741160B1

公开(公告)日：2023-08-29

申请号：US17861659

申请日：2022-07-11

Applicant: Splunk Inc.

Inventor： Alok Anant Bhide ,  Brian John Bingham ,  Tristan Antonio Fletcher ,  Brian Reyes

IPC: G06F16/26 ,  G06F16/903 ,  G06Q10/0639 ,  G06F16/248 ,  G06F16/25 ,  G06F16/33 ,  G06F16/951 ,  G06F16/2455 ,  G06F16/901 ,  G06F16/9038 ,  G06F16/9535 ,  G06F16/2453 ,  H04L41/5009 ,  G06F11/34 ,  G06F11/32 ,  G06Q10/0637 ,  H04L43/55 ,  H04L43/091 ,  H04L67/51 ,  H04L69/329 ,  H04L41/0213 ,  H04L41/50 ,  H04L43/045 ,  G06F3/04842 ,  G06F9/54 ,  H04L67/10 ,  G06F3/04817 ,  G06F3/0482 ,  G06F3/0484 ,  H04L41/22 ,  G06F3/0481 ,  G06F3/04847 ,  H04L41/0806 ,  H04L43/04 ,  H04L43/16 ,  G06T11/20

CPC classification number: G06F16/903 ,  G06F3/0481 ,  G06F3/0482 ,  G06F3/0484 ,  G06F3/04817 ,  G06F3/04842 ,  G06F3/04847 ,  G06F9/542 ,  G06F11/321 ,  G06F11/34 ,  G06F16/248 ,  G06F16/2455 ,  G06F16/24542 ,  G06F16/252 ,  G06F16/26 ,  G06F16/334 ,  G06F16/9024 ,  G06F16/9038 ,  G06F16/90335 ,  G06F16/951 ,  G06F16/9535 ,  G06Q10/0637 ,  G06Q10/0639 ,  G06Q10/06393 ,  H04L41/0213 ,  H04L41/0806 ,  H04L41/22 ,  H04L41/5009 ,  H04L41/5032 ,  H04L43/04 ,  H04L43/045 ,  H04L43/091 ,  H04L43/16 ,  H04L43/55 ,  H04L67/10 ,  H04L67/51 ,  H04L69/329 ,  G06T11/206 ,  G06T2200/24

Abstract: An example method of determining a state of a key performance indicator (KPI) comprises: receiving one or more entity definitions, wherein each entity definition associates an entity with machine data pertaining to the entity; receiving a service definition for a service provided by one or more entities, the service definition including a reference to a corresponding entity definition of the entity definitions, wherein the service definition includes a respective reference for each of the one or more entities; receiving definitions of one or more KPIs, each KPI defined by a respective search query that produces a value derived from particular machine data, wherein the particular machine data is identified by the service definition, wherein each value is indicative of performance of the service at a point in time or during a period of time; deriving, by performing on the machine data a search query associated with the KPI, one or more KPI values for the KPI; selecting, among a plurality of states of the KPI, a state satisfying a condition applied to the one or more KPI values; and causing display of a visual indicator of the state of the KPI.

公开(公告)号：US11687438B1

公开(公告)日：2023-06-27

申请号：US17248612

申请日：2021-01-29

Applicant: Splunk Inc.

Inventor： Ian Edward Torbett ,  Lila Fridley ,  Tristan Antonio Fletcher ,  Ayyappa Muthusami ,  Tanner Gilligan

IPC: G06F11/34 ,  G06F11/30 ,  G06F11/32

CPC classification number: G06F11/3466 ,  G06F11/3075 ,  G06F11/324 ,  G06F11/3428

Abstract: Systems and methods are described for performing adaptive thresholding on key performance indicator (KPI) values using an online machine learning algorithm as the KPI values or the data from which the KPI values are derived is being ingested. For example, the system can identify outliers in a moving window of KPI values. To implement the adaptive thresholding, the system may identify seasonality and/or trend components in historical KPI values. When a new KPI value is obtained, the system may remove the identified seasonality and/or trend components from the KPI value, and determine whether the modified KPI value is an outlier using sketches or quantiles. The system can then repeat this process for each subsequently received KPI value.

公开(公告)号：US20230102389A1

公开(公告)日：2023-03-30

申请号：US17954320

申请日：2022-09-27

Applicant: Splunk Inc.

Inventor： Anupadmaja Raghavan ,  George Daloukov ,  Alok Anant Bhide ,  Ross Andrew Lazerowitz ,  Tristan Antonio Fletcher ,  Alan Vincent Hardin

IPC: G06Q10/06 ,  G06Q10/00 ,  H04L41/5009 ,  H04L41/5006

Abstract: An automatic service monitor in an information technology environment has its operation controlled by information that, in part, defines entities that perform services and defines key performance indicators (KPIs) that indicate measures of performance of the services. Additional information controls the operation of the service monitor with respect to identifying and adapting for KPIs based on the non-normal data caused by maintenance work or other causes. Such adaptation may include changes in how reported information appears to the user.

公开(公告)号：US11303503B1

公开(公告)日：2022-04-12

申请号：US17111330

申请日：2020-12-03

Applicant: Splunk Inc.

Inventor： Tristan Antonio Fletcher ,  Caleb Eugene Hanson ,  Amy Katherine Hunnel Bianchi ,  Daniel M. Jones ,  Alexandros Nikolaos Kompotis ,  Ross Andrew Lazerowitz ,  William Marcum ,  Michael Margulis ,  Sean David McBride ,  Daniel Blake Partain ,  Eric Nathaniel Tschetter ,  Dipti Prabhakar Siddamsettiwar

IPC: H04L12/24 ,  H04L41/0604 ,  G06F11/07 ,  H04L41/22

Abstract: An application executing on a mobile computing platform provides independent data channels over a mobile network to multiple separate computing systems that each maintain some data pertinent to problem determination and resolution when an incident arises in a monitored information technology (IT) environment. The application maintains and separately exercises the channels to provide timely information in a user interface that composites data to present a single interface with a multi-sourced contextual rendering. Some systems may include an IT monitoring system and a separate incident management system among its sources. Channels may include extended functionality to improve security or other aspects of communication with mobile platforms.

公开(公告)号：US10915579B1

公开(公告)日：2021-02-09

申请号：US16403550

申请日：2019-05-05

Applicant: Splunk Inc.

Inventor： Alok Anant Bhide ,  Brian John Bingham ,  Tristan Antonio Fletcher ,  Brian C. Reyes

IPC: A63F13/358 ,  G06F16/903 ,  H04L12/24 ,  G06F16/9535 ,  G06F16/9038 ,  G06F16/901 ,  G06F16/2455 ,  G06F16/951 ,  G06F16/33 ,  G06F16/25 ,  G06F16/248 ,  G06F16/26 ,  G06Q10/06 ,  H04L12/26 ,  G06F11/32 ,  G06F16/2453 ,  G06F9/54 ,  H04L29/08 ,  G06F11/34 ,  G06F3/0484 ,  G06F3/0482 ,  G06F3/0481 ,  G06T11/20

Abstract: One or more processing devices access a service definition for a service provided by one or more entities that each produce machine data or about which machine data is generated. The service definition identifies the entities that provide the service and, for each entity, definitional information includes information for identifying machine data pertaining to that entity. The processing devices access a key performance indicator (KPI) for the service that is defined by a search query that produces a value derived from the machine data pertaining to the entities identified in the service definition. The value indicates how the service is performing at a point in time or during a period of time and indicates a state of the KPI. A graphical interface is displayed and an indication of at least one threshold, which defines an end of a range of values representing a state of the KPI, for the KPI is received.

公开(公告)号：US20200019555A1

公开(公告)日：2020-01-16

申请号：US16582205

申请日：2019-09-25

Applicant: Splunk Inc.

Inventor： Arun Ramani ,  Anupadmaja Raghavan ,  Tristan Antonio Fletcher ,  Marc Chene

IPC: G06F16/2457

Abstract: A service monitoring system (SMS) produces key performance indicator (KPI) scores that indicate the performance of a service. To produce the KPI scores, the SMS may process the data for a large number of machine entities that perform the service. This data can be processed on a per-entity basis to produce a per-entity KPI score representing the contribution of a particular machine to the overall KPI. The per-entity KPI scores can be transformed to statistical representations which can be visualized as a distribution stream graph. The visualization may be presented with interactive aspects. Automatic entity definitions may also be generated based on content derived from the processed data.

公开(公告)号：US20180041402A1

公开(公告)日：2018-02-08

申请号：US15693172

申请日：2017-08-31

Applicant: Splunk Inc.

Inventor： Brent Boe ,  Brian Bingham ,  John Robert Coates ,  Tristan Antonio Fletcher

IPC: H04L12/24 ,  G06F3/0481 ,  G06F3/0482 ,  G06F17/30 ,  G06F9/54 ,  G06F3/0484 ,  H04L12/26 ,  G06Q10/06

CPC classification number: G06F16/903 ,  G06F3/0481 ,  G06F3/04817 ,  G06F3/0482 ,  G06F3/0484 ,  G06F3/04842 ,  G06F3/04847 ,  G06F9/542 ,  G06F11/321 ,  G06F11/34 ,  G06F16/24542 ,  G06F16/2455 ,  G06F16/248 ,  G06F16/252 ,  G06F16/26 ,  G06F16/334 ,  G06F16/9024 ,  G06F16/90335 ,  G06F16/9038 ,  G06F16/951 ,  G06F16/9535 ,  G06F17/30424 ,  G06Q10/0637 ,  G06Q10/0639 ,  G06Q10/06393 ,  G06T11/206 ,  G06T2200/24 ,  H04L29/08072 ,  H04L41/0213 ,  H04L41/0806 ,  H04L41/22 ,  H04L41/5009 ,  H04L41/5032 ,  H04L41/5035 ,  H04L41/5038 ,  H04L43/04 ,  H04L43/045 ,  H04L43/16 ,  H04L67/10 ,  H04L67/16

Abstract: One or more processing devices create one or more entity definitions that each associate an entity with machine data pertaining to that entity and create a service definition for a service provided by one or more entities. The service definition includes an entity definition for each of the one or more entities. The one or more processing devices create one or more key performance indicators (KPIs). Each KPI is defined by a search query that produces a value derived from the machine data identified in one or more of the entity definitions included in the service definition. Each value is indicative of how the service is performing at a point in time or during a period of time.

公开(公告)号：US20170046127A1

公开(公告)日：2017-02-16

申请号：US15276776

申请日：2016-09-26

Applicant: Splunk Inc.

Inventor： Tristan Antonio Fletcher ,  Hemendra Singh Choudhary ,  Ross Andrew Lazerowitz ,  Chakravarthy Sridhar

IPC: G06F7/10 ,  G06F11/34 ,  G06F11/30 ,  G06F17/30

CPC classification number: G06F7/10 ,  G06F9/542 ,  G06F11/3006 ,  G06F11/3409 ,  G06F17/30964 ,  G06Q10/06393 ,  H04L12/4625 ,  H04L41/0604 ,  H04L41/069 ,  H04L41/5009

Abstract: An automatic service monitor in an information technology environment is equipped to automatically identify and group recognized events based on user-defined criteria, and to automatically perform user-defined operations against the group and its members at the detection of user-specified conditions.

Abstract translation: 信息技术环境中的自动服务监视器被配备为根据用户定义的标准自动识别和分组识别的事件，并且在检测到用户指定的条件时自动对组及其成员执行用户定义的操作。

公开(公告)号：US09491059B2

公开(公告)日：2016-11-08

申请号：US14800675

申请日：2015-07-15

Applicant: Splunk Inc.

Inventor： Tristan Antonio Fletcher ,  Alok Anant Bhide ,  Clint Sharp

IPC: G06F15/16 ,  H04L12/24 ,  H04L29/08 ,  G06F3/0482 ,  G06F3/0484 ,  H04L12/26 ,  G06Q10/06

CPC classification number: H04L41/5032 ,  G06F3/0482 ,  G06F3/04842 ,  G06Q10/06393 ,  H04L29/08072 ,  H04L41/0213 ,  H04L41/12 ,  H04L41/22 ,  H04L41/5006 ,  H04L41/5009 ,  H04L43/04 ,  H04L43/045 ,  H04L43/16 ,  H04L67/16 ,  H04L67/2809

Abstract: Techniques are disclosed for providing a topology navigator that may enable a user to view performance information for multiple IT services associated with a user's IT environment. The topology navigator may include multiple display components for displaying information about the services. A first display component may display multiple services as a graph of interdependent service nodes and a second display component may display information about one or more of the service nodes. The topology navigator may enable a user to visually inspect the aggregate KPI (e.g., health score) of multiple services to identify dependent services that are of interest (e.g., low performance) and navigate through the services to identify dependent services that may adversely affect a service of interest to the user. In one example, the second display component may display key performance indicators (KPIs) associated with the dependent service and the user may select one or more of the KPIs to add them to another display component for further analysis.

Abstract translation: 公开了用于提供拓扑导航器的技术，其可以使得用户能够查看与用户的IT环境相关联的多个IT服务的性能信息。 拓扑导航器可以包括用于显示关于服务的信息的多个显示组件。 第一显示组件可以将多个服务显示为相互依赖的服务节点的图，并且第二显示组件可以显示关于一个或多个服务节点的信息。 拓扑导航器可以使用户能够目视地检查多个服务的聚合KPI（例如，健康评分）以识别感兴趣的依赖服务（例如，低性能），并且浏览服务以识别可能不利地影响 用户感兴趣的服务。 在一个示例中，第二显示组件可以显示与依赖服务相关联的关键性能指标（KPI），并且用户可以选择一个或多个KPI以将它们添加到另一显示组件以进一步分析。

公开(公告)号：US20160292611A1

公开(公告)日：2016-10-06

申请号：US15088093

申请日：2016-03-31

Applicant: Splunk Inc.

Inventor： Brent Stephen Boe ,  Rochit Gupta ,  Rehan Mulla ,  Tristan Antonio Fletcher ,  Alok Anant Bhide

IPC: G06Q10/06 ,  H04L12/24

CPC classification number: G06Q10/06393 ,  H04L41/5009

Abstract: An automatic service monitor in an information technology environment has its operation controlled by information that, in part, define entities that perform services and define key performance indicators (KPIs) that indicate measures of performance of the services. KPIs are defined in terms of search queries applied against machine data by or about the entities that perform the services. The search query aspects of multiple KPI definitions may be tied to a shared base search. Implementation of the shared base search may permit improved performance of the service monitor and may permit a reduction in administrative burden.

Abstract translation: 信息技术环境中的自动服务监视器的操作受到信息的控制，该信息部分地定义了执行服务的实体，并且定义了指示服务性能测量的关键性能指标（KPI）。 KPI根据执行服务的实体的机器数据应用的搜索查询进行定义。 多个KPI定义的搜索查询方面可能与共享基础搜索相关联。 执行共享基础搜索可以允许改进服务监视器的性能，并且可以允许减少管理负担。