公开(公告)号：US11741160B1

公开(公告)日：2023-08-29

申请号：US17861659

申请日：2022-07-11

Applicant: Splunk Inc.

Inventor： Alok Anant Bhide ,  Brian John Bingham ,  Tristan Antonio Fletcher ,  Brian Reyes

IPC: G06F16/26 ,  G06F16/903 ,  G06Q10/0639 ,  G06F16/248 ,  G06F16/25 ,  G06F16/33 ,  G06F16/951 ,  G06F16/2455 ,  G06F16/901 ,  G06F16/9038 ,  G06F16/9535 ,  G06F16/2453 ,  H04L41/5009 ,  G06F11/34 ,  G06F11/32 ,  G06Q10/0637 ,  H04L43/55 ,  H04L43/091 ,  H04L67/51 ,  H04L69/329 ,  H04L41/0213 ,  H04L41/50 ,  H04L43/045 ,  G06F3/04842 ,  G06F9/54 ,  H04L67/10 ,  G06F3/04817 ,  G06F3/0482 ,  G06F3/0484 ,  H04L41/22 ,  G06F3/0481 ,  G06F3/04847 ,  H04L41/0806 ,  H04L43/04 ,  H04L43/16 ,  G06T11/20

CPC classification number: G06F16/903 ,  G06F3/0481 ,  G06F3/0482 ,  G06F3/0484 ,  G06F3/04817 ,  G06F3/04842 ,  G06F3/04847 ,  G06F9/542 ,  G06F11/321 ,  G06F11/34 ,  G06F16/248 ,  G06F16/2455 ,  G06F16/24542 ,  G06F16/252 ,  G06F16/26 ,  G06F16/334 ,  G06F16/9024 ,  G06F16/9038 ,  G06F16/90335 ,  G06F16/951 ,  G06F16/9535 ,  G06Q10/0637 ,  G06Q10/0639 ,  G06Q10/06393 ,  H04L41/0213 ,  H04L41/0806 ,  H04L41/22 ,  H04L41/5009 ,  H04L41/5032 ,  H04L43/04 ,  H04L43/045 ,  H04L43/091 ,  H04L43/16 ,  H04L43/55 ,  H04L67/10 ,  H04L67/51 ,  H04L69/329 ,  G06T11/206 ,  G06T2200/24

Abstract: An example method of determining a state of a key performance indicator (KPI) comprises: receiving one or more entity definitions, wherein each entity definition associates an entity with machine data pertaining to the entity; receiving a service definition for a service provided by one or more entities, the service definition including a reference to a corresponding entity definition of the entity definitions, wherein the service definition includes a respective reference for each of the one or more entities; receiving definitions of one or more KPIs, each KPI defined by a respective search query that produces a value derived from particular machine data, wherein the particular machine data is identified by the service definition, wherein each value is indicative of performance of the service at a point in time or during a period of time; deriving, by performing on the machine data a search query associated with the KPI, one or more KPI values for the KPI; selecting, among a plurality of states of the KPI, a state satisfying a condition applied to the one or more KPI values; and causing display of a visual indicator of the state of the KPI.

公开(公告)号：US10915579B1

公开(公告)日：2021-02-09

申请号：US16403550

申请日：2019-05-05

Applicant: Splunk Inc.

Inventor： Alok Anant Bhide ,  Brian John Bingham ,  Tristan Antonio Fletcher ,  Brian C. Reyes

IPC: A63F13/358 ,  G06F16/903 ,  H04L12/24 ,  G06F16/9535 ,  G06F16/9038 ,  G06F16/901 ,  G06F16/2455 ,  G06F16/951 ,  G06F16/33 ,  G06F16/25 ,  G06F16/248 ,  G06F16/26 ,  G06Q10/06 ,  H04L12/26 ,  G06F11/32 ,  G06F16/2453 ,  G06F9/54 ,  H04L29/08 ,  G06F11/34 ,  G06F3/0484 ,  G06F3/0482 ,  G06F3/0481 ,  G06T11/20

Abstract: One or more processing devices access a service definition for a service provided by one or more entities that each produce machine data or about which machine data is generated. The service definition identifies the entities that provide the service and, for each entity, definitional information includes information for identifying machine data pertaining to that entity. The processing devices access a key performance indicator (KPI) for the service that is defined by a search query that produces a value derived from the machine data pertaining to the entities identified in the service definition. The value indicates how the service is performing at a point in time or during a period of time and indicates a state of the KPI. A graphical interface is displayed and an indication of at least one threshold, which defines an end of a range of values representing a state of the KPI, for the KPI is received.

公开(公告)号：US09208463B1

公开(公告)日：2015-12-08

申请号：US14528894

申请日：2014-10-30

Applicant: Splunk Inc.

Inventor： Alok Anant Bhide ,  Brian John Bingham ,  Tristan Antonio Fletcher ,  Brian Reyes

IPC: G06F15/16 ,  G06Q10/06 ,  H04L29/08 ,  G06F12/00

CPC classification number: H04L43/16 ,  G06F3/0481 ,  G06F3/04817 ,  G06F3/0482 ,  G06F3/0484 ,  G06F3/04842 ,  G06F3/04847 ,  G06F9/542 ,  G06F17/30424 ,  G06F17/30463 ,  G06F17/30477 ,  G06F17/30554 ,  G06F17/3056 ,  G06F17/30572 ,  G06F17/30675 ,  G06F17/30864 ,  G06F17/30867 ,  G06F17/30958 ,  G06F17/30964 ,  G06F17/30979 ,  G06F17/30991 ,  G06Q10/06393 ,  G06T11/206 ,  G06T2200/24 ,  H04L29/08072 ,  H04L41/0213 ,  H04L41/0806 ,  H04L41/22 ,  H04L41/5009 ,  H04L41/5032 ,  H04L41/5035 ,  H04L41/5038 ,  H04L43/04 ,  H04L43/045 ,  H04L67/10 ,  H04L67/16

Abstract: One or more processing devices access a service definition for a service provided by one or more entities that each produce machine data or about which machine data is generated. The service definition identifies the entities that provide the service and, for each entity, identifying information for locating machine data pertaining to that entity. The processing devices access a key performance indicator (KPI) for the service that is defined by a search query that produces a value derived from the machine data pertaining to the entities identified in the service definition. The value indicates how the service is performing at a point in time or during a period of time and indicates a state of the KPI. A graphical interface is displayed and an indication of at least one threshold, which defines an end of a range of values representing a state of the KPI, for the KPI is received.

Abstract translation: 一个或多个处理设备访问由一个或多个实体提供的服务的服务定义，每个实体产生机器数据或关于哪个机器数据被生成。 服务定义识别提供服务的实体，并且为每个实体标识用于定位与该实体有关的机器数据的信息。 处理设备访问由搜索查询定义的服务的关键性能指标（KPI），该搜索查询产生从与服务定义中标识的实体相关的机器数据导出的值。 该值指示服务在某个时间点或一段时间内的运行情况，并指示KPI的状态。 显示图形界面，并且接收至少一个阈值的指示，其定义表示KPI的KPI的状态的范围的范围的结束。

公开(公告)号：US10650051B2

公开(公告)日：2020-05-12

申请号：US15376516

申请日：2016-12-12

Applicant: Splunk Inc.

Inventor： Leonid Viktorovich Alekseyev ,  Brian John Bingham ,  Tristan Antonio Fletcher ,  Brian C. Reyes

IPC: G06F16/903 ,  G06Q10/06 ,  H04L29/08 ,  G06F16/26 ,  G06F16/248 ,  G06F16/25 ,  G06F16/33 ,  G06F16/951 ,  G06F16/2455 ,  G06F16/901 ,  G06F16/9038 ,  G06F16/9535 ,  G06F16/2453 ,  H04L12/24 ,  G06F11/34 ,  G06F11/32 ,  H04L12/26 ,  G06F3/0484 ,  G06F9/54 ,  G06F3/0481 ,  G06F3/0482 ,  G06T11/20

Abstract: Raw machine data are captured and may be organized as events. Entity definitions representing machine entities that perform a service identify the machine data pertaining to respective entities. KPI search queries each define a KPI. Each KPI search query derives one or more values for the KPI from machine data identified in the entity definitions. The derivation may be performed on a per-entity basis and on the aggregate. The derived values may then be translated into a state value domain using per-entity thresholds, aggregate thresholds, or a combination.

公开(公告)号：US20170140071A1

公开(公告)日：2017-05-18

申请号：US15420383

申请日：2017-01-31

Applicant: Splunk Inc.

Inventor： John Robert Coates ,  Poorva Malviya ,  Brian John Bingham

IPC: G06F17/30 ,  G06F3/0482 ,  G06F3/0484 ,  H04L12/24

Abstract: Raw machine data are captured and organized as events. Entity definitions representing machine entities that perform a service identify the machine data associated with respective entities. KPI search queries each define a KPI. Each KPI search query derives one or more values for the KPI from machine data identified in the entity definitions. A dashboard template having an identifier for the KPI is presented by a graphical interface. The identifier presents at a user-designated location and may be a widget that provides a numerical or graphical representation of one or more values for the KPI. Embodiments may allow modification of the template.

公开(公告)号：US09521047B2

公开(公告)日：2016-12-13

申请号：US15012848

申请日：2016-02-01

Applicant: Splunk Inc.

Inventor： Leonid Viktorovich Alekseyev ,  Brian John Bingham ,  Tristan Antonio Fletcher ,  Brian C. Reyes

IPC: G06F15/16 ,  H04L12/24 ,  H04L12/26 ,  G06F3/0484 ,  G06F3/0482 ,  G06F17/30 ,  G06F12/00

CPC classification number: H04L43/16 ,  G06F3/0481 ,  G06F3/04817 ,  G06F3/0482 ,  G06F3/0484 ,  G06F3/04842 ,  G06F3/04847 ,  G06F9/542 ,  G06F17/30424 ,  G06F17/30463 ,  G06F17/30477 ,  G06F17/30554 ,  G06F17/3056 ,  G06F17/30572 ,  G06F17/30675 ,  G06F17/30864 ,  G06F17/30867 ,  G06F17/30958 ,  G06F17/30964 ,  G06F17/30979 ,  G06F17/30991 ,  G06Q10/06393 ,  G06T11/206 ,  G06T2200/24 ,  H04L29/08072 ,  H04L41/0213 ,  H04L41/0806 ,  H04L41/22 ,  H04L41/5009 ,  H04L41/5032 ,  H04L41/5035 ,  H04L41/5038 ,  H04L43/04 ,  H04L43/045 ,  H04L67/10 ,  H04L67/16

Abstract: Raw machine data are captured and may be organized as events. Entity definitions representing machine entities that perform a service identify the machine data pertaining to respective entities. KPI search queries each define a KPI. Each KPI search query derives one or more values for the KPI from machine data identified in the entity definitions. The derivation may be performed on a per-entity basis and on the aggregate. The derived values may then be translated into a state value domain using per-entity thresholds, aggregate thresholds, or a combination.

Abstract translation: 原始机器数据被捕获并且可以被组织为事件。 表示执行服务的机器实体的实体定义识别与各实体有关的机器数据。 KPI搜索查询每个定义一个KPI。 每个KPI搜索查询从实体定义中标识的机器数据中获取KPI的一个或多个值。 衍生可以在每个实体的基础上和聚合上进行。 然后可以使用每个实体阈值，聚合阈值或组合将派生值转换为状态值域。

公开(公告)号：US11853361B1

公开(公告)日：2023-12-26

申请号：US17835542

申请日：2022-06-08

Applicant: Splunk Inc.

Inventor： Hemendra Singh Choudhary ,  Tristan Antonio Fletcher ,  Brian John Bingham ,  Fang I. Hsiao ,  Brian Reyes

IPC: H04L43/16 ,  G06F9/54 ,  H04L43/04 ,  H04L41/5009 ,  H04L41/50 ,  G06F3/0482 ,  H04L41/0806 ,  H04L43/045 ,  H04L41/22 ,  H04L67/51 ,  G06F16/951 ,  G06F16/9535 ,  G06F16/25 ,  G06F3/04847 ,  G06F3/0481 ,  G06Q10/0637 ,  G06F16/901 ,  G06F16/248 ,  G06F16/2453 ,  G06F3/04842 ,  G06F11/34 ,  G06F16/903 ,  G06F3/04817 ,  G06F16/26 ,  G06F16/2455 ,  H04L69/329 ,  H04L41/0213 ,  G06F16/33 ,  G06F16/9038 ,  G06F3/0484 ,  H04L43/091 ,  H04L43/55 ,  G06Q10/0639 ,  H04L67/10 ,  G06F11/32 ,  G06T11/20

CPC classification number: G06F16/903 ,  G06F3/0481 ,  G06F3/0482 ,  G06F3/0484 ,  G06F3/04817 ,  G06F3/04842 ,  G06F3/04847 ,  G06F9/542 ,  G06F11/321 ,  G06F11/34 ,  G06F16/248 ,  G06F16/2455 ,  G06F16/24542 ,  G06F16/252 ,  G06F16/26 ,  G06F16/334 ,  G06F16/9024 ,  G06F16/9038 ,  G06F16/90335 ,  G06F16/951 ,  G06F16/9535 ,  G06Q10/0637 ,  G06Q10/0639 ,  G06Q10/06393 ,  H04L41/0213 ,  H04L41/0806 ,  H04L41/22 ,  H04L41/5009 ,  H04L41/5032 ,  H04L43/04 ,  H04L43/045 ,  H04L43/091 ,  H04L43/16 ,  H04L43/55 ,  H04L67/10 ,  H04L67/51 ,  H04L69/329 ,  G06T11/206 ,  G06T2200/24

Abstract: A service monitoring system executing on one or more processors may have operations that are determined by control information. Control over the operation of the service monitoring system can be exerted through the use of a graphical interface. The graphical interface may present the control information of a new or existing correlation search definition for user interaction. The service monitoring system may maintain a data store of key performance indicator (KPI) data, where a KPI value in the data store is produced by a KPI-defining search query that derives the value from machine data associated with one or more entities that perform a monitored service. A correlation search definition of the service monitoring system determines how a search of the KPI data is conducted, how its data is evaluated to determine whether a triggering condition has been met, and, if so, determines what triggered action is to be initiated.

公开(公告)号：US20160147380A1

公开(公告)日：2016-05-26

申请号：US15012817

申请日：2016-02-01

Applicant: Splunk Inc.

Inventor： John Robert Coates ,  Poorva Malviya ,  Brian John Bingham

IPC: G06F3/0481

CPC classification number: H04L43/16 ,  G06F3/0481 ,  G06F3/04817 ,  G06F3/0482 ,  G06F3/0484 ,  G06F3/04842 ,  G06F3/04847 ,  G06F9/542 ,  G06F17/30424 ,  G06F17/30463 ,  G06F17/30477 ,  G06F17/30554 ,  G06F17/3056 ,  G06F17/30572 ,  G06F17/30675 ,  G06F17/30864 ,  G06F17/30867 ,  G06F17/30958 ,  G06F17/30964 ,  G06F17/30979 ,  G06F17/30991 ,  G06Q10/06393 ,  G06T11/206 ,  G06T2200/24 ,  H04L29/08072 ,  H04L41/0213 ,  H04L41/0806 ,  H04L41/22 ,  H04L41/5009 ,  H04L41/5032 ,  H04L41/5035 ,  H04L41/5038 ,  H04L43/04 ,  H04L43/045 ,  H04L67/10 ,  H04L67/16

Abstract: Raw machine data are captured and organized as events. Entity definitions representing machine entities that perform a service identify the machine data associated with respective entities. KPI search queries each define a KPI. Each KPI search query derives one or more values for the KPI from machine data identified in the entity definitions. A dashboard template having an identifier for the KPI is presented by a graphical interface. The identifier presents at a user-designated location and may be a widget that provides a numerical or graphical representation of one or more values for the KPI. Embodiments may allow modification of the template.

Abstract translation: 原始机器数据被捕获并组织为事件。 表示执行服务的机器实体的实体定义识别与相应实体相关联的机器数据。 KPI搜索查询每个定义一个KPI。 每个KPI搜索查询从实体定义中标识的机器数据中获取KPI的一个或多个值。 具有用于KPI的标识符的仪表板模板由图形界面呈现。 标识符呈现在用户指定的位置，并且可以是提供用于KPI的一个或多个值的数字或图形表示的小部件。 实施例可以允许修改模板。

公开(公告)号：US20160103907A1

公开(公告)日：2016-04-14

申请号：US14528906

申请日：2014-10-30

Applicant: Splunk Inc.

Inventor： Brian John Bingham ,  Tristan Antonio Fletcher ,  Hemendra Singh Choudhary

IPC: G06F17/30 ,  H04L29/08

CPC classification number: H04L43/16 ,  G06F3/0481 ,  G06F3/04817 ,  G06F3/0482 ,  G06F3/0484 ,  G06F3/04842 ,  G06F3/04847 ,  G06F9/542 ,  G06F17/30424 ,  G06F17/30463 ,  G06F17/30477 ,  G06F17/30554 ,  G06F17/3056 ,  G06F17/30572 ,  G06F17/30675 ,  G06F17/30864 ,  G06F17/30867 ,  G06F17/30958 ,  G06F17/30964 ,  G06F17/30979 ,  G06F17/30991 ,  G06Q10/06393 ,  G06T11/206 ,  G06T2200/24 ,  H04L29/08072 ,  H04L41/0213 ,  H04L41/0806 ,  H04L41/22 ,  H04L41/5009 ,  H04L41/5032 ,  H04L41/5035 ,  H04L41/5038 ,  H04L43/04 ,  H04L43/045 ,  H04L67/10 ,  H04L67/16

Abstract: One or more processing devices derive a value for each of a plurality of key performance indicators (KPIs). Each KPI indicates a different aspect of how the same service provided by one or more entities is performing at a point in time. Each KPI is defined by a search query that derives the value for that KPI from machine data associated with the one or more entities that provide the same service. The one or more processing devices calculate a value for an aggregate KPI for the same service from the values for each of the plurality of KPIs.

Abstract translation: 一个或多个处理装置为多个关键性能指标（KPI）中的每一个导出值。 每个关键绩效指标表示一个或多个实体提供的相同服务在某个时间点上执行的不同方面。 每个KPI由搜索查询定义，该搜索查询从与提供相同服务的一个或多个实体相关联的机器数据中导出该KPI的值。 一个或多个处理装置根据多个KPI中的每一个的值计算相同服务的聚合KPI的值。

公开(公告)号：US10333799B2

公开(公告)日：2019-06-25

申请号：US15663561

申请日：2017-07-28

Applicant: Splunk Inc.

Inventor： Brian John Bingham ,  Tristan Antonio Fletcher ,  Hemendra Singh Choudhary

IPC: H04L29/02 ,  H04L12/24 ,  H04L29/08 ,  G06F3/0484 ,  G06Q10/06 ,  H04L12/26

Abstract: One or more processing devices derive values indicative of various aspects of how a particular service in an information technology (IT) environment is performing at a point in time or for a period of time. The values are derived by a search query over machine data associated with the one or more entities that provide the service. The one or more processing devices determine a value for an aggregate key performance indicator (KPI) for the service to indicate or characterize the service overall from values for each of the various aspects.