What technology area does this patent fall under?

Primary CPC classification G06F16/2477. Mapped technology areas include Physics.

When was this patent published?

Publication date Tue Jul 12 2022 00:00:00 GMT+0000 (Coordinated Universal Time) (B1). Legal status and post-grant events are not shown on this page.

What related patents are in patentsdb?

We list 12 related publications on this page (citations in our corpus or others sharing the same primary CPC).

Graphical display of field values extracted from machine data

US11386133B1 · US · B1

Patent metadata
Field	Value
Publication number	US-11386133-B1
Application number	US-201916430708-A
Country	US
Kind code	B1
Filing date	Jun 4, 2019
Priority date	Sep 7, 2012
Publication date	Jul 12, 2022
Grant date	Jul 12, 2022

How to read this patent

A practical reading order for non-experts. Skip the full description unless you need deep technical detail.

Title
What the patent document calls the invention.
Abstract
A short plain-language summary of the technical disclosure.
Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
Key dates
Filing, priority, publication, and grant dates set the timeline.
First independent claim
The legal scope of protection — read this for what is actually claimed.
CPC / IPC classifications
Technology tags used to group this patent with similar filings.
Citations and related patents
Prior art links and similar publications in this corpus.

Abstract

Official abstract text for this publication.

The disclosure relates to certain system and method embodiments for generating reports from unstructured data. In one embodiment, a method can include identifying events matching criteria of an initial search query (each of the events including a portion of raw machine data that is associated with a time), identifying a set of fields, each field defined for one or more of the identified events, causing display of an interactive graphical user interface (GUI) that includes one or more interactive elements enabling a user to define a report for providing information relating to the matching events (each interactive element enabling processing or presentation of information in the matching events using one or more fields in the identified set of fields), receiving, via the GUI, a report definition indicating how to report information relating to the matching events, and generating, based on the report definition, a report including information relating to the matching events.

First claim

Opening claim text (preview).

The invention claimed is: 1. A computer-implemented method comprising: receiving a search query; generating a set of events by applying the search query across a data store of field-searchable events to find matching events, including raw data produced by one or more components in an information technology environment and reflecting activity within the information technology environment; determining a set of fields that have each been defined for one or more events in the set of events, each field associated with an extraction rule for extracting a value from the raw data in each of the one or more events for which the field has been defined; calculating a relevance score for each field in the set of fields, wherein the relevance score indicates a relevance of the field to the search query; selecting one or more fields included in the set of fields based on the relevance score for each field of the set of fields; and causing display of one or more graphical controls, each graphical control corresponding to a field in the one or more fields, the graphical controls enabling a user to process the set of events using the corresponding one or more fields. 2. The computer-implemented method of claim 1 , further comprising causing display of a graphical control for selecting the one or more fields from the set of fields, to be used in a report definition. 3. The computer-implemented method of claim 1 , wherein the relevance score is calculated based on a calculated number of events in the set of events that contain raw data that includes that field, and further comprising causing display of a graphical control for selecting the one or more fields from the set of fields, wherein a field name associated with each of the one or more fields is selected to be displayed by the graphical control based on the calculated relevance score. 4. The computer-implemented method of claim 1 , wherein the relevance score is calculated based on a calculated number of different values for that field found in raw data contained in the set of events, and further comprising causing display of a graphical control for selecting the one or more fields from the set of fields, wherein a field name associated with each of the one or more fields is selected to be displayed by the graphical control based on the calculated relevance score. 5. The computer-implemented method of claim 1 , wherein the relevance score is calculated based on a calculated number of unique values for that field found in raw data contained in the set of events, and further comprising causing display of a graphical control for selecting the one or more fields from the set of fields, wherein a field name associated with each of the one or more fields is selected to be displayed by the graphical control based on the calculated relevance score. 6. The computer-implemented method of claim 1 , wherein the one or more graphical controls includes one or more filter criteria for filtering the set of events. 7. The computer-implemented method of claim 1 , wherein a graphical control of the one or more graphical controls includes one or more filter criteria for filtering the set of events by applying the filter criteria to the field. 8. The computer-implemented method of claim 1 , wherein the one or more graphical controls includes criteria for generating one or more aggregate values for the one or more events. 9. The computer-implemented method of claim 1 , wherein the one or more graphical controls includes criteria for generating one or more aggregate values for a field in the set of fields. 10. The computer-implemented method of claim 1 , wherein a graphical control of the one or more graphical controls indicates a graphical visualization. 11. The computer-implemented method of claim 1 , wherein a graphical control of the one or more graphical controls indicates a graphical visualization, and wherein the set of fields are used to map data from the set of events to the graphical visualization. 12. The computer-implemented method of claim 1 , further comprising: causing display of a text box for entering at least a portion of at least one criterion for at least one field from the set of fields; receiving the at least one criterion for the at least one field; and causing the set of events to be filtered based on the received at least one criterion for the at least one field. 13. The computer-implemented method of claim 1 , further comprising generating a data model based on the set of fields and the search query. 14. The computer-implemented method of claim 1 , further comprising: generating a data model based on the set of fields; and modifying a search defining events to which a data model is applicable based on the set of fields. 15. The computer-implemented method of claim 1 , wherein each event in the data store of field-searchable events is assigned a time stamp. 16. The computer-implemented method of claim 1 , wherein the each of the fields in the set of fields is included in a late-binding schema. 17. The computer-implemented method of claim 1 , further comprising: generating a data model based on the set of fields and the search query; saving the data model; and applying the data model to a second set of events different than the set of events. 18. The computer-implemented method of claim 1 , wherein the set of fields are pre-defined fields. 19. The computer-implemented method of claim 1 , wherein the set of fields are discovered as the set of events are created. 20. The computer-implemented method of claim 1 , wherein the search query comprises user input entered in textual form into a query box. 21. The computer-implemented method of claim 1 , wherein each extraction rule is used to identify a pattern in the raw data that indicates one or more occurrences of the field associated with the extraction rule. 22. One or more non-transitory computer-readable storage media including instructions that, when executed by one or more processors, cause the one or more processors to perform the steps of: receiving a search query; generating a set of events by applying the search query across a data store of field-searchable events to find matching events, including raw data produced by one or more components in an information technology environment and reflecting activity within the information technology environment; determining a set of fields that have each been defined for one or more events in the set of events, each field associated with an extraction rule for extracting a value from the raw data in each of the one or more events for which the field has been defined; calculating a relevance score for each field in the set of fields, wherein the relevance score indicates a relevance of the field to the search query; selecting one or more fields included in the set of fields based on the relevance score for each field of the set of fields; and causing display of one or more graphical controls, each graphical control corresponding to a field in the one or more fields, the graphical controls enabling a user to process the set of events using the corresponding one or more fields. 23. The one or more non-transitory computer-readable storage media of claim 22 , wherein the instructions further cause the one or more processors to perform the step of causing display of a graphical control for selecting the one or more fields from the set of fields, to be used in a report definition. 24. The one o

Assignees

Splunk Inc

Inventors

Classifications

G06T11/26
Drawing of charts or graphs · CPC title
G06F16/9535
Search customisation based on user profiles and personalisation · CPC title
G06F16/2477Primary
Temporal data queries · CPC title
G06F16/248
Presentation of query results · CPC title
G06T2200/24
involving graphical user interfaces [GUIs] · CPC title

Patent family

Related publications grouped by family.

View patent family 52277990

External sources

Frequently asked questions

Answers are generated from the same data shown on this page.

What does patent US11386133B1 cover?: The disclosure relates to certain system and method embodiments for generating reports from unstructured data. In one embodiment, a method can include identifying events matching criteria of an initial search query (each of the events including a portion of raw machine data that is associated with a time), identifying a set of fields, each field defined for one or more of the identified events,…
Who is the assignee on this patent?: Splunk Inc
What technology area does this patent fall under?: Primary CPC classification G06F16/2477. Mapped technology areas include Physics.
When was this patent published?: Publication date Tue Jul 12 2022 00:00:00 GMT+0000 (Coordinated Universal Time) (B1). Legal status and post-grant events are not shown on this page.
What related patents are in patentsdb?: We list 12 related publications on this page (citations in our corpus or others sharing the same primary CPC).