公开(公告)号：US12105740B2

公开(公告)日：2024-10-01

申请号：US18343420

申请日：2023-06-28

Applicant: Splunk Inc.

Inventor： Alexander William Cruise ,  Byron Jason Shelden ,  Claire Alexandria Tanner Semple

IPC: G06F16/2455 ,  G06F9/54 ,  G06F11/30 ,  G06F16/28 ,  G06Q10/10

CPC classification number: G06F16/285 ,  G06F9/542 ,  G06F11/30 ,  G06F16/24568 ,  G06F16/288 ,  G06Q10/10

Abstract: Systems and methods are disclosed for implementing a low-latency data stream monitoring system. The data stream monitoring system may obtain raw data from a data source as soon after the data is generated, and may classify the data according to different topics. The topics may be published in a publish-subscribe messaging model, and data enrichment systems may subscribe to the topics to receive data for enrichment. The data enrichment systems may supplement or replace the raw data with additional information, and may further classify or reclassify the enriched data into different topics. The enriched data may then be published to an alert generation system, which may apply various criteria to the enriched data to determine that alerts should be generated, generate the alerts, and publish or transmit the alerts to client devices. Individual data streams, topics, enrichments, criteria, and alarms may be added, removed, or modified as required.

公开(公告)号：US20230342380A1

公开(公告)日：2023-10-26

申请号：US18343420

申请日：2023-06-28

Applicant: Splunk Inc.

Inventor： Alexander William Cruise ,  Byron Jason Shelden ,  Claire Alexandria Tanner Semple

IPC: G06F16/28 ,  G06F9/54 ,  G06F16/2455 ,  G06F11/30 ,  G06Q10/10

CPC classification number: G06F16/285 ,  G06F9/542 ,  G06F16/24568 ,  G06F11/30 ,  G06Q10/10 ,  G06F16/288

Abstract: Systems and methods are disclosed for implementing a low-latency data stream monitoring system. The data stream monitoring system may obtain raw data from a data source as soon after the data is generated, and may classify the data according to different topics. The topics may be published in a publish-subscribe messaging model, and data enrichment systems may subscribe to the topics to receive data for enrichment. The data enrichment systems may supplement or replace the raw data with additional information, and may further classify or reclassify the enriched data into different topics. The enriched data may then be published to an alert generation system, which may apply various criteria to the enriched data to determine that alerts should be generated, generate the alerts, and publish or transmit the alerts to client devices. Individual data streams, topics, enrichments, criteria, and alarms may be added, removed, or modified as required.

公开(公告)号：US11386127B1

公开(公告)日：2022-07-12

申请号：US17114283

申请日：2020-12-07

Applicant: Splunk Inc.

Inventor： Alexander William Cruise ,  Byron Jason Shelden ,  Claire Alexandria Tanner Semple

IPC: G06F16/28 ,  G06Q10/10 ,  G06F11/30 ,  G06F16/2455 ,  G06F9/54

Abstract: Systems and methods are disclosed for implementing a low-latency data stream monitoring system. The data stream monitoring system may obtain raw data from a data source as soon after the data is generated, and may classify the data according to different topics. The topics may be published in a publish-subscribe messaging model, and data enrichment systems may subscribe to the topics to receive data for enrichment. The data enrichment systems may supplement or replace the raw data with additional information, and may further classify or reclassify the enriched data into different topics. The enriched data may then be published to an alert generation system, which may apply various criteria to the enriched data to determine that alerts should be generated, generate the alerts, and publish or transmit the alerts to client devices. Individual data streams, topics, enrichments, criteria, and alarms may be added, removed, or modified as required.

公开(公告)号：US10860618B2

公开(公告)日：2020-12-08

申请号：US15715077

申请日：2017-09-25

Applicant: Splunk Inc.

Inventor： Alexander William Cruise ,  Byron Jason Shelden ,  Claire Alexandria Tanner Semple

IPC: G06F16/28 ,  G06Q10/10 ,  G06F11/30 ,  G06F16/2455 ,  G06F9/54

Abstract: Systems and methods are disclosed for implementing a low-latency data stream monitoring system. The data stream monitoring system may obtain raw data from a data source as soon after the data is generated, and may classify the data according to different topics. The topics may be published in a publish-subscribe messaging model, and data enrichment systems may subscribe to the topics to receive data for enrichment. The data enrichment systems may supplement or replace the raw data with additional information, and may further classify or reclassify the enriched data into different topics. The enriched data may then be published to an alert generation system, which may apply various criteria to the enriched data to determine that alerts should be generated, generate the alerts, and publish or transmit the alerts to client devices. Individual data streams, topics, enrichments, criteria, and alarms may be added, removed, or modified as required.

公开(公告)号：US11727039B2

公开(公告)日：2023-08-15

申请号：US17811849

申请日：2022-07-11

Applicant: Splunk Inc.

Inventor： Alexander William Cruise ,  Byron Jason Shelden ,  Claire Alexandria Tanner Semple

IPC: G06F16/2455 ,  G06F16/28 ,  G06Q10/10 ,  G06F11/30 ,  G06F9/54

CPC classification number: G06F16/285 ,  G06F9/542 ,  G06F11/30 ,  G06F16/24568 ,  G06F16/288 ,  G06Q10/10

Abstract: Systems and methods are disclosed for implementing a low-latency data stream monitoring system. The data stream monitoring system may obtain raw data from a data source as soon after the data is generated, and may classify the data according to different topics. The topics may be published in a publish-subscribe messaging model, and data enrichment systems may subscribe to the topics to receive data for enrichment. The data enrichment systems may supplement or replace the raw data with additional information, and may further classify or reclassify the enriched data into different topics. The enriched data may then be published to an alert generation system, which may apply various criteria to the enriched data to determine that alerts should be generated, generate the alerts, and publish or transmit the alerts to client devices. Individual data streams, topics, enrichments, criteria, and alarms may be added, removed, or modified as required.

公开(公告)号：US20230015926A1

公开(公告)日：2023-01-19

申请号：US17811849

申请日：2022-07-11

Applicant: Splunk Inc.

Inventor： Alexander William Cruise ,  Byron Jason Shelden ,  Claire Alexandria Tanner Semple

IPC: G06F16/28 ,  G06Q10/10 ,  G06F11/30 ,  G06F16/2455 ,  G06F9/54

Abstract: Systems and methods are disclosed for implementing a low-latency data stream monitoring system. The data stream monitoring system may obtain raw data from a data source as soon after the data is generated, and may classify the data according to different topics. The topics may be published in a publish-subscribe messaging model, and data enrichment systems may subscribe to the topics to receive data for enrichment. The data enrichment systems may supplement or replace the raw data with additional information, and may further classify or reclassify the enriched data into different topics. The enriched data may then be published to an alert generation system, which may apply various criteria to the enriched data to determine that alerts should be generated, generate the alerts, and publish or transmit the alerts to client devices. Individual data streams, topics, enrichments, criteria, and alarms may be added, removed, or modified as required.

公开(公告)号：US20190095510A1

公开(公告)日：2019-03-28

申请号：US15715077

申请日：2017-09-25

Applicant: Splunk Inc.

Inventor： Alexander William Cruise ,  Byron Jason Shelden ,  Claire Alexandria Tanner Semple

IPC: G06F17/30 ,  G06Q10/10

Abstract: Systems and methods are disclosed for implementing a low-latency data stream monitoring system. The data stream monitoring system may obtain raw data from a data source as soon after the data is generated, and may classify the data according to different topics. The topics may be published in a publish-subscribe messaging model, and data enrichment systems may subscribe to the topics to receive data for enrichment. The data enrichment systems may supplement or replace the raw data with additional information, and may further classify or reclassify the enriched data into different topics. The enriched data may then be published to an alert generation system, which may apply various criteria to the enriched data to determine that alerts should be generated, generate the alerts, and publish or transmit the alerts to client devices. Individual data streams, topics, enrichments, criteria, and alarms may be added, removed, or modified as required.