-
公开(公告)号:US11817993B2
公开(公告)日:2023-11-14
申请号:US17329124
申请日:2021-05-24
Applicant: Moogsoft Inc.
Inventor: Philip Tee , Robert Duncan Harper
IPC: H04L12/24 , H04L12/26 , H04L41/046 , H04L41/14 , H04L41/12 , H04L41/142 , H04L41/22 , H04L43/0823 , H04L43/10 , H04L41/0893 , H04L43/04 , H04L43/08 , H04L43/06
CPC classification number: H04L41/046 , H04L41/0893 , H04L41/12 , H04L41/142 , H04L41/145 , H04L41/22 , H04L43/04 , H04L43/06 , H04L43/08 , H04L43/0823 , H04L43/10
Abstract: A system is provided that executes artificial intelligence for unstructured data. A memory coupled to a processor that executes instructions for: a first engine using artificial intelligence (AI) to create a structured event or scraped structured event records from unstructured and semi-structured log messages; an extraction engine in communication with a managed infrastructure and the first engine, the extraction engine configured to receive managed infrastructure data; and a signaliser engine that includes one or more of a NMF engine, a k-means clustering engine and a topology proximity engine, the signaliser engine inputting a list of devices and a list a connection between components or nodes in the managed infrastructure, the signaliser engine determining one or more common characteristics and produces one or more clusters of events.
-
公开(公告)号:US11329860B2
公开(公告)日:2022-05-10
申请号:US17204926
申请日:2021-03-17
Applicant: Moogsoft Inc.
Inventor: Philip Tee , Amir Borna
IPC: H04L12/24 , H04L12/26 , H04L29/06 , H04L41/046 , G06F16/951 , H04L41/14 , H04L41/12 , H04L41/142 , H04L41/22 , H04L43/0823 , H04L43/10 , H04L67/01 , H04L41/08 , H04L41/0893 , H04L43/067 , H04L67/00
Abstract: A system provides for management of a managed infrastructure. A processor is coupled to various engines. An extraction engine is in communication with the managed infrastructure. The extraction engine in operation receives messages from the managed infrastructure, produces events that relate to the managed infrastructure and converts the events into words and subsets used to group the events into clusters that relate to failures or errors in the managed infrastructure, including managed infrastructure physical hardware. The managed infrastructure supports the flow and processing of information. A sigalizer engine includes one or more of an NMF engine, a k-means clustering engine and a topology proximity engine. The sigalizer engine determines one or more common steps from events and produces clusters relating to events; the sigalizer engine determining one or more common characteristics of events and producing clusters of events relating to the failure or errors in the managed infrastructure, where membership in a cluster indicates a common factor of the events that is a failure or an actionable problem in the physical hardware managed infrastructure directed to supporting the flow and processing of information.
-
公开(公告)号:US11080116B2
公开(公告)日:2021-08-03
申请号:US16232110
申请日:2018-12-26
Applicant: Moogsoft, Inc.
Inventor: Philip Tee , Robert Duncan Harper , Charles Mike Silvey
IPC: H04L12/24 , G06F3/0481 , G06F11/07 , H04L12/58 , G06F16/35 , G06F21/57 , G06F21/55 , G06Q10/10 , G06F11/30 , G06Q10/00 , H04L12/26
Abstract: A method is provided for communication with a managed infrastructure. Messages are received at an extraction engine from managed infrastructure that includes managed infrastructure physical hardware that supports the flow and processing of information. Events are produced that relate to the managed infrastructure. The events are converted into words and subsets used to group the events that relate to failures or errors in the managed infrastructure, including the managed infrastructure physical hardware. One or more common characteristics of events are determined. Clusters of events are produced relating to the failure or errors in the managed infrastructure. A source address is used for each event and a graph topology of the managed infrastructure to assign a graph coordinate to the event. Membership in a cluster indicates a common factor of the events that is a failure or an actionable problem in the physical hardware managed infrastructure directed to supporting the flow and processing of information. In response to production of the clusters one or more physical changes is made in a managed infrastructure hardware and security of the managed infrastructure is maintained.
-
4.发明申请公开(公告)号:US20200313952A1
公开(公告)日:2020-10-01
申请号:US16902344
申请日:2020-06-16
Applicant: Moogsoft Inc.
Inventor: Philip Tee , Andrew Neil Cameron Hepburn
IPC: H04L12/24 , G06F16/951 , H04L12/26 , H04L29/06 , H04L29/08
Abstract: An event clustering system includes a processor. An extraction engine is in communication with an infrastructure. The extraction engine receives data from the infrastructure. A signalizer engine includes one or more of an NMF engine, a k-means clustering engine and a topology proximity engine. The signalizer engine determines one or more common steps from events and produces clusters relating to the alerts and or events. In response to production of the clusters one or more physical changes are made in a managed infrastructure hardware. Multi-systems interact with each other.
-
公开(公告)号:US10574551B2
公开(公告)日:2020-02-25
申请号:US15382884
申请日:2016-12-19
Applicant: Moogsoft, Inc.
Inventor: Philip Tee , Robert Duncan Harper , Charles Mike Silvey
IPC: G06F11/00 , H04L12/26 , H04L29/08 , H04L12/24 , G06F16/338 , H04L12/58 , G06F11/07 , G06F16/35 , G06F11/30
Abstract: A system is provided for clustering events. A first engine is configured to receive message data from managed infrastructure that includes managed infrastructure physical hardware that supports the flow and processing of information. A second engine determines common characteristics of events and produces clusters of events relating to a failure of errors in the managed infrastructure. Membership in a cluster indicates a common factor of the events that is a failure or an actionable problem in the physical hardware managed infrastructure directed to supporting the flow and processing of information. One or more situations are created that is a collection of one or more events or alerts representative of the actionable problem in the managed infrastructure. In response to the production of the clusters one or more physical changes in the managed infrastructure hardware.
-
Patent Agency Ranking
公开(公告)号:US10459779B2
公开(公告)日:2019-10-29
申请号:US15385304
申请日:2016-12-20
Applicant: Moogsoft, Inc.
Inventor: Philip Tee , Robert Duncan Harper , Charles Mike Silvey , Andrew John Leonard
IPC: G06F3/048 , G06F11/07 , H04L12/24 , G06F16/28 , G06F16/35 , G06F16/904 , H04L12/58 , G06F3/0481 , G06Q10/00
Abstract: A user interface system has a first engine in communication with a managed infrastructure and configured to receive messages from the managed infrastructure. The managed infrastructure includes physical hardware. A second engine is provided that determines one or more common steps from events and produces clusters of events relating to a failure or errors in the managed infrastructure. Membership in a cluster indicates a common factor of the events that is a failure or an actionable problem in the physical hardware of the managed infrastructure directed to supporting the flow and processing of information. In response to the production of the clusters one or more proposed physical hardware changes are suggested in a managed infrastructure hardware. A situation room is coupled to the first and second engines.
-
公开(公告)号:US20190140887A1
公开(公告)日:2019-05-09
申请号:US16236551
申请日:2018-12-30
Applicant: Moogsoft, Inc.
Inventor: Philip Tee
IPC: H04L12/24 , G06F16/951 , H04L29/08 , H04L29/06 , H04L12/26
Abstract: An event clustering system includes a processor that generates reports. An extraction engine is in communication with an infrastructure. The extraction engine receives data from the infrastructure, produces events and populates a database with a dictionary of event or graph entropy. An alert engine receives the events and creates alerts mapped into a matrix, M. A signalizer engine includes one or more of an NMF engine, a k-means clustering engine and a topology proximity engine. The signalizer engine determines one or more common steps from events and produces clusters relating to the alerts and or events. One or more interactive displays provide a collaborative interface a coupled to the extraction and the signalizer engine for decomposing events from the infrastructure. A reporting engine generates a report from at least one of the clusters and the events that are retrieved from the collaborative interface with a source address for each event to assign a graph coordinate in the graph to the event with an optional subset of attributes being extracted for each event and turning that into a vector of the graph. In response to production of the clusters one or more physical changes in a managed infrastructure hardware is made, and in response.
-
公开(公告)号:US20190097871A1
公开(公告)日:2019-03-28
申请号:US16204096
申请日:2018-11-29
Applicant: Moogsoft, Inc.
Inventor: Philip Tee
Abstract: A system is in communication with a managed infrastructure. An extraction engine is in communication with a managed infrastructure. The extraction engine is configured to receive managed infrastructure data and produces events as well as populates an entropy database with a dictionary of event entropy that can be included in the entropy database. A signalizer engine that includes one or more of an NMF engine, a k-means clustering engine and a topology proximity engine. The signalizer engine inputs a list of devices and a list of connections between components or nodes in the managed infrastructure. The signalizer engine determines one or more common characteristics and produces clusters of events relating to failure or errors in at least one of the devices and connections between components or nodes in the managed infrastructure. The events are converted into words and subsets to group the events into clusters that relate to security of the managed infrastructure. In response to grouping the events, physical changes are made to at least a portion of the physical hardware. In response to production of the clusters, security of the managed infrastructure is maintained.
-
公开(公告)号:US10243779B2
公开(公告)日:2019-03-26
申请号:US15432081
申请日:2017-02-14
Applicant: Moogsoft, Inc.
Inventor: Philip Tee , Robert Duncan Harper , Charles Mike Silvey
IPC: G06F11/00 , H04L12/24 , H04L29/06 , H04L12/58 , H04L29/08 , G06F11/07 , G06F17/30 , G06F11/30 , H04L12/26
Abstract: A system is provided for clustering events. At least one engine is configured to receive message data from managed infrastructure that includes managed infrastructure physical hardware which supports the flow and processing of information. The at least one engine is configured to determine common characteristics of events and produce clusters of events relating to the failure of errors in the managed infrastructure. Membership in a cluster indicates a common factor of the events that is a failure or an actionable problem in the physical hardware managed infrastructure directed to supporting the flow and processing of information. The at least one engine is configured to create one or more situations that is a collection of one or more events or alerts representative of the actionable problem in the managed infrastructure. A situation room includes a collaborative interface (UI) for decomposing events from managed infrastructures. In response to production of the clusters one or more physical changes in a managed infrastructure hardware is made, where the hardware supports the flow and processing of information.
-
公开(公告)号:US10146851B2
公开(公告)日:2018-12-04
申请号:US14605872
申请日:2015-01-26
Applicant: Moogsoft, Inc.
Inventor: Philip Tee , Robert Duncan Harper , Charles Mike Silvey
Abstract: Methods are provided for clustering events. Data is received at an extraction engine from managed infrastructure. Events are converted into alerts and the alerts mapped to a matrix M. One or more common steps are determined from the events and clusters of events are produced relating to the alerts and or events.
-
-
-
-
-
-
-
-
-
Search Results
98
records
(took 0.025 seconds)
