Apparatus for and Method of Implementing system Log Message Ranking via System Behavior Analysis

Sivan Sabato (Inventor), Aviad Tsherniak (Inventor), Elad Yom-Tov (Inventor)

Research output: Patent

Abstract

A novel and useful method for enabling system logs to be effectively and efficiently monitored by ranking the system log messages by their estimated value to administrators and generating a log view that displays the most important messages. The ranking process uses a dataset of system logs from many computer systems to score messages. For better scoring, unsupervised clustering is used to identify sets of systems that behave similarly. The expected distribution of messages in a given system is estimated using the resulting clusters, and log messages are scored using this estimation.

Original languageEnglish
Patent numberUS2009113246
IPCG06F 11/ 00 A I
Priority date24/10/07
StatePublished - 30 Apr 2009

Fingerprint

Dive into the research topics of 'Apparatus for and Method of Implementing system Log Message Ranking via System Behavior Analysis'. Together they form a unique fingerprint.

Cite this