Elastic Stack keynote

1
Elastic Stack Keynote
Steve Kearns
Vice President, Product Management
Vijay Doshi
Senior Director, Product Management

2
This presentation and the accompanying oral presentation contain forward-looking statements, including statements
concerning plans for future offerings; the expected strength, performance or benefits of our offerings; and our future
operations and expected performance. These forward-looking statements are subject to the safe harbor provisions
under the Private Securities Litigation Reform Act of 1995. Our expectations and beliefs in light of currently
available information regarding these matters may not materialize. Actual outcomes and results may differ materially
from those contemplated by these forward-looking statements due to uncertainties, risks, and changes in
circumstances, including, but not limited to those related to: the impact of the COVID-19 pandemic on our business
and our customers and partners; our ability to continue to deliver and improve our offerings and successfully
develop new offerings, including security-related product offerings and SaaS offerings; customer acceptance and
purchase of our existing offerings and new offerings, including the expansion and adoption of our SaaS offerings;
our ability to realize value from investments in the business, including R&D investments; our ability to maintain and
expand our user and customer base; our international expansion strategy; our ability to successfully execute our
go-to-market strategy and expand in our existing markets and into new markets, and our ability to forecast customer
retention and expansion; and general market, political, economic and business conditions.
Additional risks and uncertainties that could cause actual outcomes and results to differ materially are included in
our filings with the Securities and Exchange Commission (the “SEC”), including our Annual Report on Form 10-K for
the most recent fiscal year, our quarterly report on Form 10-Q for the most recent fiscal quarter, and any
subsequent reports filed with the SEC. SEC filings are available on the Investor Relations section of Elastic’s
website at ir.elastic.co and the SEC’s website at www.sec.gov.
Any features or functions of services or products referenced in this presentation, or in any presentations, press
releases or public statements, which are not currently available or not currently available as a general availability
release, may not be delivered on time or at all. The development, release, and timing of any features or functionality
described for our products remains at our sole discretion. Customers who purchase our products and services
should make the purchase decisions based upon services and product features and functions that are currently
available.
All statements are made only as of the date of the presentation, and Elastic assumes no obligation to, and does not
currently intend to, update any forward-looking statements or statements relating to features or functions of services
or products, except as required by law.
Forward-Looking Statements

Doubling down on the
Elastic Stack

In the beginning...
beats
elasticsearch
kibana
logstash

Log analytics
Infrastructure metrics
Service uptime
Threat hunting
Website search
Cross company
resource search
eCommerce search
Incident Response
Real user monitoring
Use cases emerged

Log analytics
Application performance monitoring
Service uptime
Threat hunting
Endpoint protection
Website search
In-app search
Cross company
resource search
Search Observe Protect
eCommerce search
customer support
portal
Synthetic monitoring
Threat prevention
Threat Detection
Incident Response
Response hunting
Security monitoring
Business Analytics
Network Traffic
Mapping
Use cases emerged

Log analytics
Application performance monitoring
Service uptime
Threat hunting
Endpoint protection
Website search
In-app search
Cross company
resource search
eCommerce search
customer support
portal
Synthetic monitoring
Threat prevention
Threat Detection
Incident Response
Response hunting
Security monitoring
Business Analytics
Elastic Enterprise Search Elastic SecurityElastic Observability
Network Traffic
Mapping
Solutions created

Elastic Enterprise Search Elastic SecurityElastic Observability
beats
elasticsearch
kibana
logstash
Solutions created

ACT
DECIDE ORIENT
OBSERVE
OODA
Loop
Elastic Stack themes

Workﬂow &
Collaboration
Data Analysis
& Insight
Managing Data
OODA
Loop
Getting Started &
Ease of Use

Fleet and Agent
Single unified ingest method

Integrations, integrations, integrations
Onboarding and overview experiences

Landing pages
Every section
Each section of the navigation will have a landing page -
Kibana, Observability, Security and Enterprise Search
Every cluster
Net new clusters will be onboarded to ingest data and
experience their use case first hand
Every user
Net new users will be guided with in-app product tours
Always customizable
Experienced users will enjoy a customizable overview
page of their choice
Onboarding and overview experiences

Ease of use: A new architecture for Kibana

Constantly Occasionally Rarely
Only when
lawyers ask

Hot Warm
Index Lifecycle Management

Snapshot: backups at the cost of S3/Object Store
Snapshot Lifecycle Management

Cold
Snapshot
$/2
Introducing Searchable Snapshots

S3/Azure Blob Store/Google Cloud Storage
Disk
Cold

Introducing Searchable Snapshots
Cold
Frozen
Snapshot
$/2

Disk
Frozen

Doc Values
Stored Fields
Term Dictionary
Term Proximity
Normalization Factors
Point Values
Meta Lookup

Disk
Frozen

Hot Warm Cold
Frozen
Snapshot
$$ $/2

Learn more in
these sessions
Managing the Elastic Stack at scale
Cost-effective data storage with data
tiers
How we built this: Data tiering,
snapshots, and asynchronous search

Data analysis: Async Search
Tons of DataSlower (Cheaper) Hardware Show Search Progress

Data analysis: Event Query Language
EQL + ES
Analytics and Rule-writing
EQL endpoint
Real-time threat
hunting
Security Observability Search

Elasticsearch Query DSL
REST SQL EQL PromQL
Data analysis: Query languages in Elastic

Data analysis: Rollups
5MB 25MB 1TB

Time to Dashboard: Kibana Lens

Analytically useful: Sparse data

Analytically useful: Drag and drop multiple YAxis

Learn more in
these sessions
What’s new with data visualization in
Kibana
Advanced tips for visualizing and
presenting data in Kibana

Workflow and collaboration: Actionable Kibana

Workflow and collaboration: Alerting framework

Workflow and collaboration: Alerting framework
On the
horizon…

Learn more in
these sessions
A new framework for alerts and
actions in Kibana
Advanced tips for visualizing and
presenting data in Kibana

Schema on write
Speed, Scale,
Relevance
Data you understand
and use
Best For

Schema on write
Speed, Scale,
Relevance
Schema on read
Flexibility
Data you understand
and use
Best For
New Data Sources
Handling Changes
Enable New Workﬂows
Good For

Runtime Fields
New Field Type
Defined by a Script
Painless, grok/regex or even a dynamic lookup
Evaluated at Query Time
Add to your mapping, or provide with your query
Works like a regular field
Search, aggregate, visualize just like a regular field.
{
“day_of_week" : {
"type" : "runtime",
"runtime_type" : "keyword",
"script" : {
"source" : "dayOfWeek(doc[‘@timestamp’)"
}
}
}
New Data Sources
Handling Changes
Enable New Workflows
Good For

Wrap-up
For real this time)

Workflow &
Collaboration
Data Analysis
& Insight
Managing Data
OODA
Loop
Getting Started
& Ease of Use
Onboarding
Use case focus getting started
Landing page
Global navigation
New branding
Elastic Agent
Ingest Manager
Data Streams
Runtime fields
Integration
Roll-ups
Drill downs
Custom workflows
Send to slack
Send to email
Send to background
Intermediate results
User setting
Lens GA
New input controls
New dashboard experience
Solutions inside dashboards
Canvas templates, Dashboard to Canvas
Pivot table
Treemap
Conditional metrics colors
Discover spreadsheet
Solution geo layers
Geo_shape aggregation
Vector tile output

Elastic Stack keynote

More Related Content

What's hot

Similar to Elastic Stack keynote

More from Elasticsearch

Recently uploaded

Elastic Stack keynote