IPC분류정보
국가/구분 |
United States(US) Patent
공개
|
국제특허분류(IPC7판) |
|
출원번호 |
US-0664109
(2012-10-30)
|
공개번호 |
US-0054596
(2013-02-28)
|
발명자
/ 주소 |
|
출원인 / 주소 |
|
인용정보 |
피인용 횟수 :
0 인용 특허 :
0 |
초록
▼
Methods and apparatus consistent with the invention provide the ability to organize and build understandings of machine data generated by a variety of information-processing environments. Machine data is a product of information-processing systems (e.g., activity logs, configuration files, messages,
Methods and apparatus consistent with the invention provide the ability to organize and build understandings of machine data generated by a variety of information-processing environments. Machine data is a product of information-processing systems (e.g., activity logs, configuration files, messages, database records) and represents the evidence of particular events that have taken place and been recorded in raw data format. In one embodiment, machine data is turned into a machine data web by organizing machine data into events and then linking events together.
대표청구항
▼
1. An apparatus for organizing machine data from a plurality of computing devices over a network, comprising: a memory for storing instructions; anda processor that executes instructions to enable actions, including: receiving machine data from the plurality of computing devices;automatically organi
1. An apparatus for organizing machine data from a plurality of computing devices over a network, comprising: a memory for storing instructions; anda processor that executes instructions to enable actions, including: receiving machine data from the plurality of computing devices;automatically organizing received machine data into a plurality of events;constructing dynamic links between the plurality of events to represent one or more activities for an information space that corresponds to the plurality of computing devices; andpresenting one or more activities that occur in the information space for review by a user. 2. The apparatus of claim 1, wherein the organizing further comprises aggregating machine data into at least one event. 3. The apparatus of claim 1, wherein the organizing further comprises extracting an entity from machine data that is organized into the at least one event. 4. The apparatus of claim 1, wherein the organizing further comprises classifying the plurality of events into one or more categories based on at least one of a source signature and an event signature. 5. The apparatus of claim 1, wherein the review by the user includes at last one of searching, browsing, and navigating the organized events in the information space. 6. The apparatus of claim 1, wherein the organizing further comprises automatically learning one or more break rules for each domain that corresponds to an event based on the received machine data. 7. The apparatus of claim 1, wherein the received machine data is collected by a module, wherein one or more parts of the module are distributable to different locations having access to the machine data. 8. The apparatus of claim 1, wherein the plurality of events are organized into one or more collections that correspond to the one or more activities for the information space. 9. A system for organizing machine data from a plurality of computing devices over a network, comprising: a server device including: a first memory for storing instructions; anda first processor that executes instructions to enable actions, including: receiving machine data from the plurality of computing devices;automatically organizing received machine data into a plurality of events;constructing dynamic links between the plurality of events to represent one or more activities for an information space that corresponds to the plurality of computing devices; anda client device, comprising: a second memory for storing instructions; anda second processor that executes instructions to enable actions, including: collecting machine data from the plurality of computing devices; andpresenting one or more activities that occur in the information space for review by a user. 10. The system of claim 9, wherein the organizing further comprises aggregating machine data into at least one event. 11. The system of claim 9, wherein the organizing further comprises extracting an entity from machine data that is organized into the at least one event. 12. The system of claim 9, wherein the organizing further comprises classifying the plurality of events into one or more categories based on at least one of a source signature and an event signature. 13. The system of claim 9, wherein the review by the user includes at last one of searching, browsing, and navigating the organized events in the information space. 14. The system of claim 9, wherein the organizing further comprises automatically learning one or more break rules for each domain that corresponds to an event based on the received machine data. 15. The system of claim 9, wherein the plurality of events are organized into one or more collections that correspond to the one or more activities for the information space. 16. A method for organizing machine data from a plurality of computing devices over a network, comprising: receiving machine data from the plurality of computing devices;automatically organizing received machine data into a plurality of events;constructing dynamic links between the plurality of events to represent one or more activities for an information space that corresponds to the plurality of computing devices; andpresenting one or more activities that occur in the information space for review by a user. 17. The method of claim 16, wherein the organizing further comprises aggregating machine data into at least one event. 18. The method of claim 16, wherein the organizing further comprises extracting an entity from machine data that is organized into the at least one event. 19. The method of claim 16, wherein the organizing further comprises classifying the plurality of events into one or more categories based on at least one of a source signature and an event signature. 20. The method of claim 16, wherein the review by the user includes at last one of searching, browsing, and navigating the organized events in the information space. 21. The method of claim 16, wherein the organizing further comprises automatically learning one or more break rules for each domain that corresponds to an event based on the received machine data. 22. The method of claim 16, wherein the received machine data is collected by a module, wherein one or more parts of the module are distributable to different locations having access to the machine data. 23. The method of claim 16, wherein the plurality of events are organized into one or more collections that correspond to the one or more activities for the information space. 24. A processor readable non-transitory storage media that stores executable instructions for organizing machine data from a plurality of computing devices over a network, wherein the execution of the instructions by a processor enables actions, comprising: receiving machine data from the plurality of computing devices;automatically organizing received machine data into a plurality of events;constructing dynamic links between the plurality of events to represent one or more activities for an information space that corresponds to the plurality of computing devices; andpresenting one or more activities that occur in the information space for review by a user. 25. The media of claim 24, wherein the organizing further comprises aggregating machine data into at least one event. 26. The media of claim 24, wherein the organizing further comprises extracting an entity from machine data that is organized into the at least one event. 27. The media of claim 24, wherein the organizing further comprises classifying the plurality of events into one or more categories based on at least one of a source signature and an event signature. 28. The media of claim 24, wherein the review by the user includes at last one of searching, browsing, and navigating the organized events in the information space. 29. The media of claim 24, wherein the organizing further comprises automatically learning one or more break rules for each domain that corresponds to an event based on the received machine data. 30. The media of claim 24, wherein the received machine data is collected by a module, wherein one or more parts of the module are distributable to different locations having access to the machine data.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.