公开(公告)号：US10075352B2

公开(公告)日：2018-09-11

申请号：US14564235

申请日：2014-12-09

Applicant: CA, INC.

Inventor： Sreenivas Gukal

IPC: G06F15/173 ,  H04L12/26 ,  H04L12/24

CPC classification number: H04L43/04 ,  H04L41/142 ,  H04L43/065 ,  H04L43/067

Abstract: An application analysis computer receives reports from user terminals which contain application performance metrics and dimensions having values characterizing the applications and the user terminals. Statistics for each different one of the performance metrics across the reports are generated for repeating time intervals. One of the statistics that has changed between two of the time intervals by an amount that satisfies a defined rule is identified, and the associated performance metric is selected for analysis. For each combination of a different one of the dimensions and a different one of the values occurring for the dimension, a statistic is generated for the selected performance metric associated with the combination, and a counter is incremented that tracks a number of occurrences of the combination among the reports. Sets of the statistic and the counter for particular ones of the combinations that satisfy an action rule are identified.

公开(公告)号：US10019510B2

公开(公告)日：2018-07-10

申请号：US14445232

申请日：2014-07-29

Applicant: CA, INC.

Inventor： Sreenivas Gukal

IPC: G06F17/30

CPC classification number: G06F16/31

Abstract: A computer partitions a log stream into records having defined intervals. For each of the records, the computer selects a template from among a set of templates in a templates index repository based on an identifier for the record being associated in the templates index repository with the template, identifies an attribute contained in the record based on the template, and stores the attribute associated with an identifier for the record and an identifier for the template in an attributes index repository. The attributes index repository and the templates index repository are used to retrieve records responsive to search queries.

公开(公告)号：US09892166B2

公开(公告)日：2018-02-13

申请号：US14510401

申请日：2014-10-09

Applicant: CA, INC.

Inventor： Sreenivas Gukal

IPC: G06F17/30

CPC classification number: G06F17/30516 ,  G06F17/30554

Abstract: A log record from a host machine node includes terms. Frequency of occurrence of the terms across a stream of log records is determined. Based on the frequency satisfying a threshold, a Bloom filter vector is selected from among a plurality of Bloom filter vectors based on the frequency, the Bloom filter vector is updated based on the terms, and an identifier for the log record is stored with an association to the Bloom filter vector. In contrast, based on the frequency of occurrence not satisfying the defined frequency range, a type identifier is identified based on the terms, a Bloom filter vector is selected from among the plurality of Bloom filter vectors based on the type identifier, the Bloom filter vector is updated based on the terms, and an identifier for the log record is stored with an association to the Bloom filter vector.

公开(公告)号：US20160164754A1

公开(公告)日：2016-06-09

申请号：US14564235

申请日：2014-12-09

Applicant: CA, INC.

Inventor： Sreenivas Gukal

IPC: H04L12/26

CPC classification number: H04L43/04 ,  H04L41/142 ,  H04L43/065 ,  H04L43/067

Abstract: An application analysis computer receives reports from user terminals which contain application performance metrics and dimensions having values characterizing the applications and the user terminals. Statistics for each different one of the performance metrics across the reports are generated for repeating time intervals. One of the statistics that has changed between two of the time intervals by an amount that satisfies a defined rule is identified, and the associated performance metric is selected for analysis. For each combination of a different one of the dimensions and a different one of the values occurring for the dimension, a statistic is generated for the selected performance metric associated with the combination, and a counter is incremented that tracks a number of occurrences of the combination among the reports. Sets of the statistic and the counter for particular ones of the combinations that satisfy an action rule are identified.

Abstract translation: 应用分析计算机从用户终端接收包含具有表征应用和用户终端的值的应用性能度量和维度的报告。 生成报告中每个不同的一个性能指标的统计信息，以重复时间间隔。 识别在两个时间间隔之间以满足定义的规则的量改变的统计信息之一，并且选择相关的性能度量用于分析。 对于维度中不同的一个维度和针对该维度出现的不同值之一的每个组合，针对与该组合相关联的所选择的性能度量生成统计量，并且递增计数器，其跟踪组合的发生次数 在报告中。 识别满足动作规则的特定组合的统计量和计数器的集合。

公开(公告)号：US20160173321A1

公开(公告)日：2016-06-16

申请号：US14569953

申请日：2014-12-15

Applicant: CA, Inc.

Inventor： Sreenivas Gukal ,  Sanjay Vyas ,  Rammohan Varadarajan

IPC: H04L12/24 ,  H04M15/00 ,  H04W4/00 ,  H04L12/26

CPC classification number: H04L41/064 ,  H04L41/0681 ,  H04L43/067 ,  H04L43/16 ,  H04M15/58 ,  H04M15/8214 ,  H04M15/85 ,  H04W4/24 ,  H04W4/60

Abstract: An application analysis computer obtains reports from user terminals containing application performance metrics and dimensions having values characterizing the applications and the user terminals. Statistics for each different type of the performance metrics across the reports are generated. One of the statistics, for one type of the performance metrics, that has changed at least a threshold amount between two time intervals is identified, and that performance metric is selected for analysis. For each combination of a different type of the characteristic dimensions and a different value among the values occurring for the type of the characteristic dimension, a statistic is generated for the selected type of the performance metrics from the reports. Information is communicated based on an active warning ID that was selected based on being associated with a combination of the type of the characteristic dimension and one of the statistics that changed at least a threshold amount.

Abstract translation: 应用分析计算机从用户终端获取包含具有表征应用和用户终端的值的应用性能度量和维度的报告。 生成报告中每种不同类型的性能指标的统计信息。 识别出在两个时间间隔之间至少改变了阈值量的一种类型的性能度量的统计信息之一，并且选择性能指标用于分析。 对于特征维度的不同类型的每个组合以及针对特征维度类型出现的值中的不同值，从报告中为所选择的性能度量类型生成统计量。 基于与特征维度的类型的组合和至少改变了阈值量的统计信息的组合相关联的活动警告ID来传送信息。

公开(公告)号：US20160070739A1

公开(公告)日：2016-03-10

申请号：US14482400

申请日：2014-09-10

Applicant: CA, INC,

Inventor： Sreenivas Gukal ,  Kiran Jyotsna Achyutuni

IPC: G06F17/30

CPC classification number: G06F17/40 ,  G06F11/34 ,  G06F17/30985 ,  G06F2201/00

Abstract: A method by a computer includes, for each of a plurality of log records received as part of a log stream from a host machine node, identifying a template identifier within a template repository for a template string matching an invariant string of the log record, and identifying an attribute identifier in an attribute repository for an attribute string matching a variant string of the log record. The log records are partitioned into batches. Each of the batches are defined by a data structure that includes the template identifier and the attribute identifier for each of the log records within the batch. The data structures for each of the batches are stored into a log repository.

Abstract translation: 计算机的方法包括对于作为来自主机节点的日志流的一部分而接收的多个日志记录中的每一个，识别与日志记录的不变字符串匹配的模板串的模板存储库内的模板标识符，以及 在属性库中识别与日志记录的变体字符串相匹配的属性字符串的属性标识符。 日志记录被分批分批。 每个批次由数据结构定义，该数据结构包括模板标识符和批处理中每个日志记录的属性标识符。 每个批次的数据结构都存储在日志存储库中。

公开(公告)号：US20160034510A1

公开(公告)日：2016-02-04

申请号：US14445232

申请日：2014-07-29

Applicant: CA, INC.

Inventor： Sreenivas Gukal

IPC: G06F17/30

CPC classification number: G06F17/30613

Abstract: A computer partitions a log stream into records having defined intervals. For each of the records, the computer selects a template from among a set of templates in a templates index repository based on an identifier for the record being associated in the templates index repository with the template, identifies an attribute contained in the record based on the template, and stores the attribute associated with an identifier for the record and an identifier for the template in an attributes index repository. The attributes index repository and the templates index repository are used to retrieve records responsive to search queries.

Abstract translation: 计算机将日志流分成具有定义间隔的记录。 对于每个记录，计算机基于模板索引库中与模板相关联的记录的标识符从模板索引库中的一组模板中选择模板，基于该模板标识包含在记录中的属性 模板，并将与记录的标识符相关联的属性和模板的标识符存储在属性索引存储库中。 属性索引存储库和模板索引存储库用于检索响应搜索查询的记录。

公开(公告)号：US20160004769A1

公开(公告)日：2016-01-07

申请号：US14323499

申请日：2014-07-03

Applicant: CA, INC.

Inventor： Sreenivas Gukal

IPC: G06F17/30

CPC classification number: G06F17/30696 ,  G06F17/30628 ,  G06F17/30657 ,  G06F17/30678

Abstract: A method by a computer includes receiving a search query from a user equipment, where the search query defines a logical combination of terms to be searched within a defined interval of records of a log stream. An estimate is generated for the number of occurrences of the logical combination of terms in the defined interval of records. A message containing the estimate for the number of occurrences of the logical combination of terms in the defined interval of records is communicated toward the user equipment.

Abstract translation: 计算机的方法包括从用户设备接收搜索查询，其中搜索查询在定义的日志流的记录间隔内定义要搜索的术语的逻辑组合。 在定义的记录间隔中，对于术语的逻辑组合的出现次数生成估计。 向用户设备传送包含在定义的记录间隔内的术语的逻辑组合的出现次数的估计的消息。

公开(公告)号：US10049171B2

公开(公告)日：2018-08-14

申请号：US14482400

申请日：2014-09-10

Applicant: CA, INC.

Inventor： Sreenivas Gukal ,  Kiran Jyotsna Achyutuni

IPC: G06F17/00 ,  G06F17/30 ,  G06F17/40 ,  G06F11/34

Abstract: A method by a computer includes, for each of a plurality of log records received as part of a log stream from a host machine node, identifying a template identifier within a template repository for a template string matching an invariant string of the log record, and identifying an attribute identifier in an attribute repository for an attribute string matching a variant string of the log record. The log records are partitioned into batches. Each of the batches are defined by a data structure that includes the template identifier and the attribute identifier for each of the log records within the batch. The data structures for each of the batches are stored into a log repository.

公开(公告)号：US09965550B2

公开(公告)日：2018-05-08

申请号：US14323499

申请日：2014-07-03

Applicant: CA, INC.

Inventor： Sreenivas Gukal

IPC: G06F17/30 ,  G06F7/00

CPC classification number: G06F17/30696 ,  G06F17/30628 ,  G06F17/30657 ,  G06F17/30678

Abstract: A method by a computer includes receiving a search query from a user equipment, where the search query defines a logical combination of terms to be searched within a defined interval of records of a log stream. An estimate is generated for the number of occurrences of the logical combination of terms in the defined interval of records. A message containing the estimate for the number of occurrences of the logical combination of terms in the defined interval of records is communicated toward the user equipment.