Automatic disambiguation assistance for similar items in a set
US-9443015-B1 · Sep 13, 2016 · US
Monitoring service-level performance using key performance indicators derived from machine data
US9755912B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-9755912-B2 |
| Application number | US-201514815888-A |
| Country | US |
| Kind code | B2 |
| Filing date | Jul 31, 2015 |
| Priority date | Oct 9, 2014 |
| Publication date | Sep 5, 2017 |
| Grant date | Sep 5, 2017 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
One or more processing devices create one or more entity definitions that each associate an entity with machine data pertaining to that entity and create a service definition for a service provided by one or more entities. The service definition includes an entity definition for each of the one or more entities. The one or more processing devices create one or more key performance indicators (KPIs). Each KPI is defined by a search query that produces a value derived from the machine data identified in one or more of the entity definitions included in the service definition. Each value is indicative of how the service is performing at a point in time or during a period of time.
First claim
Opening claim text (preview).
What is claimed is: 1. A method comprising: accessing a search query from computer storage and executing the search query automatically on a repeated basis, wherein, for each execution, the search query transforms machine data to a value by deriving the value from machine data associated with one or more entities that provide a service, the value indicating a measure of performance of the service at a point in time or over a period of time; and representing each derived value in computer storage to produce a recorded time series for the measure; wherein each of the one or more entities is represented in computer storage by an entity definition that associates the entity with machine data pertaining to the entity, and each entity definition is included in a service definition representing the service in computer storage; wherein the machine data reflects activity in an information technology environment and is produced by one or more components of the information technology environment; wherein the method is performed by a computer system comprising one or more processors coupled to the computer storage. 2. The method of claim 1 wherein the measure of performance of the service is based at least in part on a measure of a computing resource. 3. The method of claim 1 wherein the search query defines a Key Performance Indicator (KPI) associated with the service. 4. The method of claim 1 wherein the search query defines a Key Performance Indicator (KPI) associated with the service and the value indicative of a measure of performance of the service is indicative of a measure of an aspect of the service. 5. The method of claim 1 wherein the search query is included in the service definition. 6. The method of claim 1 wherein the search query is included in the service definition and defines a Key Performance Indicator (KPI). 7. The method of claim 1 wherein the machine data pertaining to the entity is produced by more than one source. 8. The method of claim 1 wherein the machine data pertaining to the entity is produced by the entity and by a source that is not the entity. 9. The method of claim 1 wherein the machine data pertaining to the entity is machine data produced by or about the entity. 10. The method of claim 1 wherein the machine data associated with one or more entities that provide the service comprises event data. 11. The method of claim 1 wherein the machine data associated with one or more entities that provide the service comprises timestamped event data. 12. The method of claim 1 wherein the machine data associated with one or more entities that provide the service comprises events, each event comprising a segment of raw machine data. 13. The method of claim 1 wherein the machine data associated with one or more entities that provide the service comprises unstructured data. 14. The method of claim 1 wherein the machine data pertaining to the entity is produced by more than one source and comprises unstructured data. 15. The method of claim 1 wherein the machine data pertaining to the entity is produced by more than one source and comprises unstructured data stored as timestamped events. 16. The method of claim 1 further comprising causing the display of a graphical user interface comprising a graphical representation of at least a portion of the recorded time series. 17. The method of claim 1 further comprising causing the display of a graphical user interface comprising a representation of at least a portion of the recorded time series, the representation comprising at least one from among a line graph, a spark line, and a trend indicator. 18. The method of claim 1 wherein the search query is sent to an event processing system for execution. 19. The method of claim 1 wherein the search query is sent to an event processing system for execution, the event processing system storing the machine data as events. 20. The method of claim 1 wherein the search query is sent to an event processing system for execution, the event processing system storing the machine data as events, and accessing the machine data of events, at least in part, with a late-binding schema. 21. The method of claim 1 wherein the search query derives the value from machine data accessed with a late-binding-schema. 22. The method of claim 1 wherein the repeated basis is based on a defined frequency. 23. The method of claim 1 wherein the repeated basis is based on a schedule. 24. The method of claim 1 further comprising: causing the display of a graphical user interface enabling a user to indicate a monitoring frequency; receiving a user input indicating the monitoring frequency; associating the monitoring frequency indicated by the user input with the search query; and wherein the repeated basis is based on the monitoring frequency associated with the search query. 25. A system comprising: a memory; and a processing device coupled with the memory to: access a search query from computer storage and executing the search query automatically on a repeated basis, wherein, for each execution, the search query transforms machine data to a value by deriving the value from machine data associated with one or more entities that provide a service, the value indicating a measure of performance of the service at a point in time or over a period of time; and represent each derived value in computer storage to produce a recorded time series for the measure; wherein each of the one or more entities is represented in computer storage by an entity definition that associates the entity with machine data pertaining to the entity, and each entity definition is included in a service definition representing the service in computer storage; wherein the machine data reflects activity in an information technology environment and is produced by one or more components of the information technology environment. 26. The system of claim 25 wherein the machine data pertaining to the entity is produced by more than one source. 27. The system of claim 25 wherein the machine data associated with one or more entities that provide the service comprises events, each event comprising a segment of raw machine data. 28. The system of claim 25 wherein the search query derives the value from machine data accessed with a late-binding-schema. 29. The system of claim 25 wherein the search query is included in the service definition and defines a Key Performance Indicator (KPI). 30. A non-transitory computer readable storage medium encoding instructions thereon that, in response to execution by one or more processing devices, cause the processing device to: access a search query from computer storage and executing the search query automatically on a repeated basis, wherein, for each execution, the search query transforms machine data to a value by deriving the value from machine data associated with one or more entities that provide a service, the value indicating a measure of performance of the service at a point in time or over a period of time; and represent each derived value in computer storage to produce a recorded time series for the measure; wherein each of the one or more entities is represented in computer storage by an entity definition that associates the entity with machine data pertaining to the entity, and each entity definition is
Assignees
Inventors
Classifications
Drawing of charts or graphs · CPC title
Strategic management or analysis, e.g. setting a goal or target of an organisation; Planning actions based on goals; Analysis or evaluation of effectiveness of goals · CPC title
involving graphical user interfaces [GUIs] · CPC title
Interaction with lists of selectable items, e.g. menus · CPC title
Presentation of query results · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US9755912B2 cover?
- One or more processing devices create one or more entity definitions that each associate an entity with machine data pertaining to that entity and create a service definition for a service provided by one or more entities. The service definition includes an entity definition for each of the one or more entities. The one or more processing devices create one or more key performance indicators (K…
- Who is the assignee on this patent?
- Splunk Inc, Splunk Inc
- What technology area does this patent fall under?
- Primary CPC classification G06Q10/06393. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Tue Sep 05 2017 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 5 related publications on this page (citations in our corpus or others sharing the same primary CPC).