| 发明名称 |
AUTOMATIC CREATION OF RULES FOR IDENTIFYING EVENT BOUNDARIES IN MACHINE DATA |
| 摘要 |
Methods and apparatus consistent with the invention provide the ability to organize and build understandings of machine data generated by a variety of information-processing environments. Machine data is a product of information-processing systems (e.g., activity logs, configuration files, messages, database records) and represents the evidence of particular events that have taken place and been recorded in raw data format. In one embodiment, machine data is turned into a machine data web by organizing machine data into events and then linking events together. |
| 申请公布号 |
US2015227612(A1) |
申请公布日期 |
2015.08.13 |
| 申请号 |
US201514691135 |
申请日期 |
2015.04.20 |
| 申请人 |
Splunk Inc. |
发明人 |
Baum Michael Joseph;Carasso R. David;Das Robin Kumar;Hall Bradley;Murphy Brian Philip;Sorkin Stephen Philip;Stechert Andre David;Swan Erik M.;Greene Rory;Mealy Nocholas Christian;Noren Christina Frances Regina |
| 分类号 |
G06F17/30;H04L29/08;G06F17/27 |
主分类号 |
G06F17/30 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A method, comprising:
organizing machine data stored in at least one storage device into a plurality of events by determining event boundaries in the machine data, each event in the plurality of events including some machine data from the stored machine data; extracting a particular portion of machine data from an event in the plurality of events; identifying, in the plurality of events, one or more events that include the particular portion of machine data; wherein the method is performed by one or more computing devices. |
| 地址 |
San Francisco CA US |
