&#xfeff;<html>
  <head>
    <META http-equiv="Content-Type" content="text/html; charset=utf-8">
<link rel="stylesheet" type="text/css" href="html_style_eog.css"/>
<script type="text/javascript">
          function printpage()
          {
          window.print()
          }
        </script>
<script type="text/javascript" src="https://components.uspto.gov/js/ais/40-patentsgazette.js"></script></head>
  <body bgcolor='#FFFFFF' onload='javascript: if ((navigator.appName.indexOf("Netscape")!=-1) && parent.leftFrame!=null) parent.leftFrame.location.reload();'>
    <basefont face="Times New Roman, Times New Roman, Times New Roman " size="2">
      <div style="margin-left: +10pt">
        <table width="90%" border="0" rules="none" align="center">
          <tr align="center">
            <td width="20%" colspan="1" rowspan="2" align="left" valign="top"><a href="https://ppubs.uspto.gov/pubwebapp/external.html?q=11899670.pn.&amp;db=USPAT" target="popup"><input type="button" class="button" value="   Full Text   "></a></td>
            <td class="table_data"><b>US 11,899,670 B1</b></td>
            <td width="20%" colspan="1" rowspan="2" align="right" valign="top">
              <form><input type="button" value="Print this page" onclick="printpage()"></form>
            </td>
          </tr>
          <tr align="center">
            <td colspan="1" class="table_data" style="text-transform: uppercase"><b>Generation of queries for execution at a separate system</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b> Ankit Bhagat,  Santa Clara, CA (US);  Steven Karis,  San Mateo, CA (US);  Amin Moshgabadi,  San Diego, CA (US); and  Rajesh Raman,  Palo Alto, CA (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Assigned to  Splunk Inc.,  San Francisco, CA (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed by  Splunk Inc.,  San Francisco, CA (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed on Jan.  31, 2022, as Appl. No. 17/589,558.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Claims priority of provisional application 63/266,490, filed on Jan.  6, 2022.</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Int. Cl. </b><i><b>G06F 16/2455</b></i> (2019.01); <i><b>G06F 16/22</b></i> (2019.01); <i><b>G06F 16/2458</b></i> (2019.01); <i><b>G06F 21/62</b></i> (2013.01)</td>
          </tr>
        </table>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="75%">
            <col width="15%">
          </colgroup>
          <tr align="left">
            <td class="table_data" align="left"><b>CPC </b><i><b>G06F 16/24568</b></i> (2019.01)&#xa0;[<i><b>G06F 16/22</b></i> (2019.01); <i><b>G06F 16/2471</b></i> (2019.01); <i><b>G06F 21/6227</b></i> (2013.01)]</td>
            <td class="table_data" align="right"><b>20 Claims</b></td>
          </tr>
        </table>
        <center><img src="US11899670-20240213-D00000.gif" alt="OG exemplary drawing"></center>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="90%">
          </colgroup>
          <tr>
            <td class="table_data" align="center">&#xa0;</td>
          </tr>
          <tr>
            <td valign="top" class="para_text">
              <div class="claim_text_root">1. A method comprising:<div class="claim_text">identifying, by a processing system, one or more credentials;</div>
                <div class="claim_text">establishing, by the processing system, a connection with a data intake and query system based at least in part on the one or more credentials, wherein the processing system and the data intake and query system are distinct systems;</div>
                <div class="claim_text">identifying, by the processing system, one or more indices of the data intake and query system associated with the one or more credentials based at least in part on establishing the connection with the data intake and query system;</div>
                <div class="claim_text">identifying, by the processing system, a query, wherein the query identifies a selection of at least one index of the one or more indices of the data intake and query system identified by the processing system, wherein the query further identifies a set of log data ingested and indexed by the data intake and query system;</div>
                <div class="claim_text">generating, by the processing system, a request, wherein the request comprises the query, the one or more credentials, and an identifier of the connection with the data intake and query system;</div>
                <div class="claim_text">transmitting, by the processing system, the request to the data intake and query system via the connection with the data intake and query system, wherein the data intake and query system validates that a device associated with the one or more credentials is authorized to access the set of log data based at least in part on the one or more credentials and executes the query on the set of log data based at least in part on validating that the device is authorized to access the set of log data;</div>
                <div class="claim_text">obtaining, by the processing system, from the data intake and query system, query results based at least in part on transmission of the request to the data intake and query system and execution of the query on the set of log data by the data intake and query system, the query results comprising a portion of the set of log data; and</div>
                <div class="claim_text">providing, by the processing system, the portion of the set of log data in response to the query.</div>
              </div>
            </td>
          </tr>
        </table>
      </div>
    
  </body>
</html>