Managing incident reports
First Claim
1. A computer-implemented method for managing system alert incidents, comprising:
- receiving, from a plurality of tenants in at least one multi-tenant system, a plurality of alert reports, each alert report representing at least one system alert incident associated with the plurality of tenants in the at least one multi-tenant systems;
analyzing, by a hardware processor, the plurality of alert reports for duplicate alert reports, wherein analyzing the plurality of received alert reports includes;
identifying duplicate alert reports, wherein identifying the duplicate alert reports comprises;
generating a hash code corresponding to each of the plurality of alert reports; and
comparing each of the generated hash codes with each of the other generated hash codes and previously-generated hash codes associated with previously received alert reports to identify duplicate alert reports having similar generated hash codes;
correlating each duplicate alert report of the plurality of duplicate alert reports into a correlated incident report; and
aggregating the correlated incident reports into at least one summarized incident report.
2 Assignments
0 Petitions
Accused Products
Abstract
The present disclosure describes methods, systems, and computer program products for managing incident reports can include receiving alert messages from multiple tenants and aggregating the alert messages into a reduced, correlated incident reports. For example, the method includes receiving, from a number of tenants, alert reports that represent at least one system alert incident associated with the tenants. The alert reports can be collected and analyzed for duplicate reports. The analysis for duplicate reports can include identifying a number of duplicate alert reports and correlating each identified duplicate alert reports into a correlated incident report. The correlated incident report can be aggregated into a summarized incident report for processing.
72 Citations
17 Claims
-
1. A computer-implemented method for managing system alert incidents, comprising:
-
receiving, from a plurality of tenants in at least one multi-tenant system, a plurality of alert reports, each alert report representing at least one system alert incident associated with the plurality of tenants in the at least one multi-tenant systems; analyzing, by a hardware processor, the plurality of alert reports for duplicate alert reports, wherein analyzing the plurality of received alert reports includes; identifying duplicate alert reports, wherein identifying the duplicate alert reports comprises; generating a hash code corresponding to each of the plurality of alert reports; and comparing each of the generated hash codes with each of the other generated hash codes and previously-generated hash codes associated with previously received alert reports to identify duplicate alert reports having similar generated hash codes; correlating each duplicate alert report of the plurality of duplicate alert reports into a correlated incident report; and aggregating the correlated incident reports into at least one summarized incident report. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A tangible, non-transitory computer readable medium encoded with a computer program, the program comprising instructions that when executed by one or more hardware processors cause the one or more hardware processors to perform operations for authenticating an end user comprising:
-
receiving, from a plurality of tenants in at least one multi-tenant system, a plurality of alert reports, each alert report representing at least one system alert incident associated with the plurality of tenants in the at least one multi-tenant systems; analyzing the plurality of alert reports for duplicate alert reports, wherein analyzing the plurality of received alert reports includes; identifying duplicate alert reports, wherein identifying the duplicate alert reports comprises; generating a hash code corresponding to each of the plurality of alert reports; and comparing each of the generated hash codes with each of the other generated hash codes and previously-generated hash codes associated with previously received alert reports to identify duplicate alert reports having similar generated hash codes; correlating each duplicate alert report of the plurality of duplicate alert reports into a correlated incident report; and aggregating the correlated incident reports into at least one summarized incident report. - View Dependent Claims (11, 12, 13)
-
-
14. A system comprising:
a hardware processor interoperably coupled with a computer-readable medium storing computer instructions executable by the hardware processor to perform operations comprising; receiving, from a plurality of tenants in at least one multi-tenant system, a plurality of alert reports, each alert report representing at least one system alert incident associated with the plurality of tenants in the at least one multi-tenant systems; analyzing the plurality of alert reports for duplicate alert reports, wherein analyzing the plurality of received alert reports includes; identifying duplicate alert reports, wherein identifying the duplicate alert reports comprises; generating a hash code corresponding to each of the plurality of alert reports; and comparing each of the generated hash codes with each of the other generated hash codes and previously-generated hash codes associated with previously received alert reports to identify duplicate alert reports having similar generated hash codes; correlating each duplicate alert report of the plurality of duplicate alert reports into a correlated incident report; and aggregating the correlated incident reports into at least one summarized incident report. - View Dependent Claims (15, 16, 17)
Specification