Browse Prior Art Database

Expert system based on rules to generate alerts from operating system logging tool records

IP.com Disclosure Number: IPCOM000237331D
Publication Date: 2014-Jun-13
Document File: 2 page(s) / 43K

Publishing Venue

The IP.com Prior Art Database

Abstract

Here is disclosed a simple way to extract alerts from the complex operating system logging tool records. These records have different structures, depending on the product that is writing the records. This solution allows to normalize the data and apply on it an expert system to generate alerts.

This text was extracted from a PDF file.
This is the abbreviated version, containing approximately 62% of the total text.

Page 01 of 2

Expert system based on rules to generate alerts from operating system logging tool records

Here is described a method to extract alerts from the operating system logging tool records, in a human understandable structure.

The idea here is not to care about the information stored in the operating system logging tool records and the owner of the data written, but rather to consider the data stored by the operating system logging tool as pure data. If the records layout used to

write the records is known, the records can be extracted regardless of the contents.


1.


2.


3.


4.

To extract the data a program (PGM0) uses a standardised method for writing out records of activity to a file, regardless the content of the data. It produces a sequential dataset that will be the basis for further processing.

The sequential file will be uploaded to a spreadsheet, using a second program

(PGM1), in order to allow complex inquiries and create tailored reports.

A third program (PGM2) will process the spreadsheet, based on 'simple' expert

system. Data are processed to only extract the requested information using an artificial intelligence. It is based on rules with the goal of extracting knowledge from a data set in a human understandable structure. The system administrator can decide the rules to be applied based on the actual need and generate alerts in a completely customizable way.

A verification of a positive result is contained for each steps and, in case of failure,

an error me...