&#xfeff;<html>
  <head>
    <META http-equiv="Content-Type" content="text/html; charset=utf-8">
<link rel="stylesheet" type="text/css" href="html_style_eog.css"/>
<script type="text/javascript">
          function printpage()
          {
          window.print()
          }
        </script>
<script type="text/javascript" src="https://components.uspto.gov/js/ais/40-patentsgazette.js"></script></head>
  <body bgcolor='#FFFFFF' onload='javascript: if ((navigator.appName.indexOf("Netscape")!=-1) && parent.leftFrame!=null) parent.leftFrame.location.reload();'>
    <basefont face="Times New Roman, Times New Roman, Times New Roman " size="2">
      <div style="margin-left: +10pt">
        <table width="90%" border="0" rules="none" align="center">
          <tr align="center">
            <td width="20%" colspan="1" rowspan="2" align="left" valign="top"><a href="https://ppubs.uspto.gov/pubwebapp/external.html?q=12341791.pn.&amp;db=USPAT" target="popup"><input type="button" class="button" value="   Full Text   "></a></td>
            <td class="table_data"><b>US 12,341,791 B1</b></td>
            <td width="20%" colspan="1" rowspan="2" align="right" valign="top">
              <form><input type="button" value="Print this page" onclick="printpage()"></form>
            </td>
          </tr>
          <tr align="center">
            <td colspan="1" class="table_data" style="text-transform: uppercase"><b>Machine learning techniques for predictive anomaly detection</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b> Tran DePalo,  Dover, NH (US);  Jacob Miller,  Newburgh, IN (US);  Gary Bergeron,  Dover, NH (US); and  Cristiano Costa,  Manchester, NH (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Assigned to  Liberty Mutual Insurance Company,  Boston, MA (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed by  Liberty Mutual Insurance Company,  Boston, MA (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed on Aug.  31, 2022, as Appl. No. 17/823,703.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Claims priority of provisional application 63/248,816, filed on Sep.  27, 2021.</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Int. Cl. </b><i><b>G06F 11/00</b></i> (2006.01); <i><b>G06F 11/34</b></i> (2006.01); <i><b>H04L 9/40</b></i> (2022.01); <i><b>H04L 41/16</b></i> (2022.01)</td>
          </tr>
        </table>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="75%">
            <col width="15%">
          </colgroup>
          <tr align="left">
            <td class="table_data" align="left"><b>CPC </b><i><b>H04L 63/1425</b></i> (2013.01)&#xa0;[<i><b>G06F 11/3419</b></i> (2013.01); <i><b>G06F 11/3452</b></i> (2013.01); <i><b>G06F 11/3466</b></i> (2013.01); <i><b>H04L 41/16</b></i> (2013.01)]</td>
            <td class="table_data" align="right"><b>20 Claims</b></td>
          </tr>
        </table>
        <center><img src="US12341791-20250624-D00000.gif" alt="OG exemplary drawing"></center>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="90%">
          </colgroup>
          <tr>
            <td class="table_data" align="center">&#xa0;</td>
          </tr>
          <tr>
            <td valign="top" class="para_text">
              <div class="claim_text_root">1. A computer-implemented method for generating an inferred anomaly classification score for an input operational monitoring timeseries trend for a monitored computer system during a target monitoring period, the computer-implemented method comprising:<div class="claim_text">generating, using one or more processors and an initial anomaly designation machine learning model, and based at least in part on the input operational monitoring timeseries trend, an initial anomaly designation for the input operational monitoring timeseries trend;</div>
                <div class="claim_text">in response to determining that the initial anomaly designation for the input operational monitoring timeseries trend is a positive initial anomaly designation, generating, using the one or more processors and an anomalous operational state detection machine learning model, and based at least in part on the input operational monitoring timeseries trend, the inferred anomaly classification score for the input operational monitoring timeseries trend, wherein: (i) the anomalous operational state detection machine learning model is trained using one or more positive training entries corresponding to one or more positive operational monitoring timeseries trends and one or more negative training entries corresponding to one or more negative operational monitoring timeseries trends, (ii) each positive operational monitoring timeseries trend is detected in accordance with one or more ground-truth validation criteria, and (iii) the one or more ground-truth validation criteria comprise a first ground-truth validation criterion that is defined based at least in part on an inferred outlier score for a decomposed residual component of a given operational monitoring timeseries trend; and</div>
                <div class="claim_text">initiating, using the one or more processors, the performance of a prediction-based action based at least in part on the inferred anomaly classification score, wherein the prediction-based action comprises one or more of generating user interface data for an output user interface, instructing a system reboot for the monitored computer system, instructing a system shutdown for the monitored computer system, or limiting user access to the monitored computer system.</div>
              </div>
            </td>
          </tr>
        </table>
      </div>
    
  </body>
</html>