&#xfeff;<html>
  <head>
    <META http-equiv="Content-Type" content="text/html; charset=utf-8">
<link rel="stylesheet" type="text/css" href="html_style_eog.css"/>
<script type="text/javascript">
          function printpage()
          {
          window.print()
          }
        </script>
<script type="text/javascript" src="https://components.uspto.gov/js/ais/40-patentsgazette.js"></script></head>
  <body bgcolor='#FFFFFF' onload='javascript: if ((navigator.appName.indexOf("Netscape")!=-1) && parent.leftFrame!=null) parent.leftFrame.location.reload();'>
    <basefont face="Times New Roman, Times New Roman, Times New Roman " size="2">
      <div style="margin-left: +10pt">
        <table width="90%" border="0" rules="none" align="center">
          <tr align="center">
            <td width="20%" colspan="1" rowspan="2" align="left" valign="top"><a href="https://ppubs.uspto.gov/pubwebapp/external.html?q=12380342.pn.&amp;db=USPAT" target="popup"><input type="button" class="button" value="   Full Text   "></a></td>
            <td class="table_data"><b>US 12,380,342 B2</b></td>
            <td width="20%" colspan="1" rowspan="2" align="right" valign="top">
              <form><input type="button" value="Print this page" onclick="printpage()"></form>
            </td>
          </tr>
          <tr align="center">
            <td colspan="1" class="table_data" style="text-transform: uppercase"><b>Alert management in data processing systems</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b> Michael Elton Nidd,  Z&#xfc;rich (CH);  Hagen V&#xf6;lzer,  Z&#xfc;rich (CH);  Ioana Giurgiu,  Z&#xfc;rich (CH);  Jinho Hwang,  Ossining, NY (US); and  Larisa Shwartz,  Greenwich, CT (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Assigned to  International Business Machines Corporation,  Armonk, NY (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed by  International Business Machines Corporation,  Armonk, NY (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed on Aug.  6, 2020, as Appl. No. 16/986,342.</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Prior Publication US 2022/0044129 A1, Feb.  10, 2022</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Int. Cl. </b><i><b>G06N 5/04</b></i> (2023.01); <i><b>G06F 16/23</b></i> (2019.01); <i><b>G06N 5/01</b></i> (2023.01); <i><b>G06N 20/00</b></i> (2019.01); <i><b>G06N 20/20</b></i> (2019.01)</td>
          </tr>
        </table>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="75%">
            <col width="15%">
          </colgroup>
          <tr align="left">
            <td class="table_data" align="left"><b>CPC </b><i><b>G06N 5/04</b></i> (2013.01)&#xa0;[<i><b>G06F 16/2379</b></i> (2019.01); <i><b>G06N 5/01</b></i> (2023.01); <i><b>G06N 20/20</b></i> (2019.01)]</td>
            <td class="table_data" align="right"><b>18 Claims</b></td>
          </tr>
        </table>
        <center><img src="US12380342-20250805-D00000.gif" alt="OG exemplary drawing"></center>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="90%">
          </colgroup>
          <tr>
            <td class="table_data" align="center">&#xa0;</td>
          </tr>
          <tr>
            <td valign="top" class="para_text">
              <div class="claim_text_root">1. A computer-implemented method for dynamically updating a master ruleset used by an alert management system that matches alerts in a data processing system with automated processes (&#x201c;automata&#x201d;) for handling the alerts, the method comprising:<div class="claim_text">training, by one or more processors, a machine learning model to correlate the alerts with the automata using a training dataset comprising matched alerts successfully handled by the automata, wherein the automata includes archiving logs in response to capacity alerts and removing zombie processes, wherein the machine learning model comprises a tree-ensemble model;</div>
                <div class="claim_text">applying, by the one or more processors, the machine learning model to correlate unmatched alerts with the automata, wherein the unmatched alerts were not matched to the automata by the master ruleset;</div>
                <div class="claim_text">responsive to exceeding a number of unmatched alerts, analyzing, by the one or more processors, an operation of the machine learning model in relation to correlation of the unmatched alerts, further comprising:<div class="claim_text">generating, by the one or more processors, a new tree based on features of paths through trees in the tree-ensemble model via which the unmatched alerts were correlated with the automata, wherein the new tree defines the new ruleset; and</div>
                  <div class="claim_text">pruning, by the one or more processors, the paths in dependance on a number on unmatched alerts correlated with automata via respective paths while retaining the paths with a higher number of unmatched alerts;</div>
                </div>
                <div class="claim_text">based on the analyzing, defining, by the one or more processors, a new ruleset for matching the unmatched alerts with the automata;</div>
                <div class="claim_text">outputting, by the one or more processors, the new ruleset in a graphical user interface for auditing of each rule in the new ruleset;</div>
                <div class="claim_text">responsive to approval of an audited rule of the new ruleset, adding, by the one or more processors, the audited rule to the master ruleset; and</div>
                <div class="claim_text">responsive to matching the automata, deploying, by one or more processors, the automata.</div>
              </div>
            </td>
          </tr>
        </table>
      </div>
    
  </body>
</html>