Patents by Inventor Uri Elzur
Uri Elzur has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Publication number: 20240106750Abstract: Examples include techniques for multipathing over reliable paths and completion reporting. Example techniques include examples of providing reliability over multiple paths routed through a network between a source and a target of a message. Example techniques also include examples of completion reporting for messages sent via packets routed through a network over multiple paths.Type: ApplicationFiled: December 12, 2023Publication date: March 28, 2024Inventors: Nayan Amrutlal SUTHAR, Uri ELZUR, Josh D. COLLIER
-
Publication number: 20220335563Abstract: Examples described herein relate to a first graphics processing unit (GPU) comprising at least one integrated network interface controller (NIC), wherein a data plane of the at least one integrated NIC is configured by a particular entity. In some examples, the data plane of the at least one integrated NIC is configured by the particular entity as a control plane but the first GPU and a central processing unit (CPU) are prevented from configuring the data plane of the at least one integrated NIC.Type: ApplicationFiled: June 29, 2022Publication date: October 20, 2022Inventor: Uri ELZUR
-
Patent number: 11405464Abstract: Embodiments of the present disclosure may relate to an apparatus for infrastructure management with an interface to receive a plurality of telemetry signals from first one or more infrastructure components of an infrastructure; and a policy controlled semi-autonomous (PCSA) infrastructure evaluator coupled with the interface, where the PCSA infrastructure evaluator includes a machine-learning (ML) model of service level metric (SLM) deviation by second one or more application or infrastructure components of the infrastructure and the PCSA infrastructure evaluator is to: determine a deviation from a SLM of third one or more infrastructure components based at least in part the ML model and one or more of the plurality of telemetry signals; and send a message, based at least in part on the deviation from the SLM. Other embodiments may be described and/or claimed.Type: GrantFiled: September 29, 2017Date of Patent: August 2, 2022Assignee: Intel CorporationInventor: Uri Elzur
-
Patent number: 10949235Abstract: Disclosed are mechanisms to support integrating network semantics into communications between processor cores operating on the same server hardware. A network communications unit is implemented in a coherent domain with the processor cores. The network communications unit may be implemented on the CPU package, in one or more of the processor cores, and/or coupled via the coherent fabric. The processor cores and/or associated virtual entities communicate by transmitting packet headers via the network communications unit. When communicating locally compressed headers may be employed. The headers may omit specified fields and employ simplified addressing schemes for increased communication speed. When communicating locally, data can be moved between memory locations and/or pointers can be communicated to reduce bandwidth needed to transfer data. The network communications unit may maintain/access a local policy table containing rules governing communications between entities and enforce such rules accordingly.Type: GrantFiled: December 12, 2016Date of Patent: March 16, 2021Assignee: Intel CorporationInventor: Uri Elzur
-
Publication number: 20200167258Abstract: Examples described herein provide for a memory and at least one processor coupled to the memory. The at least one processor indicates a prediction of a performance goal failure based on performance monitoring of the at least one processor. The performance goal can be based on a service level agreement (SLA). The performance monitoring can be related to core activity or inactivity. A trained machine learning (ML) model can be used to infer performance goal failure based on performance monitoring of the at least one processor. The ML model can be trained using a simulation of traffic to use a compact set of performance monitoring indicators. Mitigation efforts can take place to avoid violation of the SLA.Type: ApplicationFiled: January 28, 2020Publication date: May 28, 2020Inventors: Rita CHATTOPADHYAY, Uri ELZUR
-
Patent number: 10255203Abstract: Technologies for zero-copy inter-virtual-machine communication include a computing device with extended page table support. A sender virtual machine stores data in a shared memory block and enables access to protected code without generating a virtual machine exit, for example by executing a specialized processor instruction. From the protected code, the sender virtual machine sets a permission in an extended page table associated with the shared memory block and notifies a receiver virtual machine. When the permission is set, the sender virtual machine is prohibited from writing or executing the contents of the shared memory block. The receiver virtual machine reads data from the shared memory block and then enables access to protected code without generating a virtual machine exit. From the protected code, the receiver virtual machine clears the permission and notifies the sender virtual machine that reading is complete. Other embodiments are described and claimed.Type: GrantFiled: June 30, 2016Date of Patent: April 9, 2019Assignee: Intel CorporationInventor: Uri Elzur
-
Publication number: 20190104182Abstract: Embodiments of the present disclosure may relate to an apparatus for infrastructure management with an interface to receive a plurality of telemetry signals from first one or more infrastructure components of an infrastructure; and a policy controlled semi-autonomous (PCSA) infrastructure evaluator coupled with the interface, where the PCSA infrastructure evaluator includes a machine-learning (ML) model of service level metric (SLM) deviation by second one or more application or infrastructure components of the infrastructure and the PCSA infrastructure evaluator is to: determine a deviation from a SLM of third one or more infrastructure components based at least in part the ML model and one or more of the plurality of telemetry signals; and send a message, based at least in part on the deviation from the SLM. Other embodiments may be described and/or claimed.Type: ApplicationFiled: September 29, 2017Publication date: April 4, 2019Inventor: Uri Elzur
-
Publication number: 20180165107Abstract: Disclosed are mechanisms to support integrating network semantics into communications between processor cores operating on the same server hardware. A network communications unit is implemented in a coherent domain with the processor cores. The network communications unit may be implemented on the CPU package, in one or more of the processor cores, and/or coupled via the coherent fabric. The processor cores and/or associated virtual entities communicate by transmitting packet headers via the network communications unit. When communicating locally compressed headers may be employed. The headers may omit specified fields and employ simplified addressing schemes for increased communication speed. When communicating locally, data can be moved between memory locations and/or pointers can be communicated to reduce bandwidth needed to transfer data. The network communications unit may maintain/access a local policy table containing rules governing communications between entities and enforce such rules accordingly.Type: ApplicationFiled: December 12, 2016Publication date: June 14, 2018Applicant: Intel CorporationInventor: Uri Elzur
-
Patent number: 9935841Abstract: An embodiment may include forwarding, at least in part, received traffic, based at least in part upon programming provided, at least in part, by at least one controller. The programming may be based at least in part upon at least one policy. The forwarding may be in accordance with various parameters, criteria, usage models, processing considerations, etc. Many modifications are possible.Type: GrantFiled: January 28, 2013Date of Patent: April 3, 2018Assignee: Intel CorporationInventor: Uri Elzur
-
Publication number: 20180004680Abstract: Technologies for zero-copy inter-virtual-machine communication include a computing device with extended page table support. A sender virtual machine stores data in a shared memory block and enables access to protected code without generating a virtual machine exit, for example by executing a specialized processor instruction. From the protected code, the sender virtual machine sets a permission in an extended page table associated with the shared memory block and notifies a receiver virtual machine. When the permission is set, the sender virtual machine is prohibited from writing or executing the contents of the shared memory block. The receiver virtual machine reads data from the shared memory block and then enables access to protected code without generating a virtual machine exit. From the protected code, the receiver virtual machine clears the permission and notifies the sender virtual machine that reading is complete. Other embodiments are described and claimed.Type: ApplicationFiled: June 30, 2016Publication date: January 4, 2018Inventor: Uri Elzur
-
Patent number: 9461975Abstract: Aspects of a method and system for traffic engineering in an IPSec secured network are provided. In this regard, a node in a network may be authenticated as a trusted third party and that trusted third party may be enabled to acquire security information shared between or among a plurality of network entities. In this manner, the trusted third party may parse, access and operate on IPSec encrypted traffic communicated between or among the plurality of network entities. Shared security information may comprise one or more session keys utilized for encrypting and/or decrypting the IPSec secured traffic. The node may parse IPSec traffic and identify a flow associated with the IPsec traffic. In this manner, the node may generate and/or communicate statistics pertaining to said IPSec secured traffic based on the flow with which the traffic is associated.Type: GrantFiled: November 9, 2015Date of Patent: October 4, 2016Assignee: BROADCOM CORPORATIONInventor: Uri Elzur
-
Patent number: 9438535Abstract: Methods and systems for a plurality of physical layers for network connection may include coupling a MAC to one of a plurality of PHYs. The coupling to a specific PHY may be based on auto-detection of network activity, or network devices, via the PHYs. Also, one of the PHYs may be coupled to the MAC as a power-up default. The PHYs may be coupled to a same network, by, for example, cables. A first cable to a first PHY may couple it to a first network switch and a second cable to a second PHY may couple it to a second network switch. The first network switch may be rated to handle, for example, a greater data rate than the second network switch. The first cable may not be able to be used as a cable for the second PHY, and vice versa.Type: GrantFiled: August 19, 2013Date of Patent: September 6, 2016Assignee: Broadcom Israel Research, Ltd.Inventors: Eliezer Aloni, Uri Elzur, Predrag Kostic, Klaus Friedrich
-
Patent number: 9384025Abstract: In this embodiment, techniques are provided that may permit operations performed by hardware and software to process one or more (e.g., network traffic-related) workloads to be coordinated, at least in part. Such coordination may permit this embodiment to operate in accordance with one or more advantageous usage models, and/or to achieve advantages such as, accelerated network traffic processing, while permitting and/or facilitating a multi-tenant (e.g., software-defined) network environment to be provided, for example, via enforcement of one or more associated policies. Many modifications are possible without departing from this embodiment.Type: GrantFiled: December 19, 2013Date of Patent: July 5, 2016Assignee: Intel CorporationInventor: Uri Elzur
-
Patent number: 9311120Abstract: Aspects of a method and system for networking are provided. In this regard, one or more circuits and/or processors in a network adapter of a first network device may determine whether to communicate traffic between virtual machines running on the first network device via a path that resides solely within the first network device, or via a path that comprises a second network device that is external to the first network device. The determination may be based, at least in part, on characteristics of the traffic. The determination may be based, at least in part, on capabilities and/or available resources of the network adapter. The determination may be based, at least in part, on management information exchanged between the one or more circuits and/or processors and one or more of: software running on the first network device, the second network device, and a third network device.Type: GrantFiled: February 25, 2013Date of Patent: April 12, 2016Assignee: Broadcom CorporationInventor: Uri Elzur
-
Publication number: 20160080335Abstract: Aspects of a method and system for traffic engineering in an IPSec secured network are provided. In this regard, a node in a network may be authenticated as a trusted third party and that trusted third party may be enabled to acquire security information shared between or among a plurality of network entities. In this manner, the trusted third party may parse, access and operate on IPSec encrypted traffic communicated between or among the plurality of network entities. Shared security information may comprise one or more session keys utilized for encrypting and/or decrypting the IPSec secured traffic. The node may parse IPSec traffic and identify a flow associated with the IPsec traffic. In this manner, the node may generate and/or communicate statistics pertaining to said IPSec secured traffic based on the flow with which the traffic is associated.Type: ApplicationFiled: November 9, 2015Publication date: March 17, 2016Applicant: BROADCOM CORPORATIONInventor: Uri ELZUR
-
Patent number: 9282119Abstract: An embodiment may include policy engine circuitry that may enforce, at least in part, one or more platform resource management policies in a cloud computing environment. The one or more policies may be based, at least in part, upon service arrangements of the cloud computing environment. The one or more policies may establish respective isolated computing environments in the cloud computing environment that may be used by respective users. The enforcement of the one or more policies may result in the respective isolated computing environments being virtually isolated from each other and prevented from interfering with each other in derogation of the one or more policies. The one or more policies may be established, at least in part, via interaction of at least one management process with one or more application program interfaces of the circuitry. Many modifications are possible.Type: GrantFiled: February 28, 2013Date of Patent: March 8, 2016Assignee: Intel CorporationInventor: Uri Elzur
-
Patent number: 9282118Abstract: An embodiment may include policy engine circuitry that may enforce, at least in part, one or more platform resource management policies in a cloud computing environment. The one or more policies may be based, at least in part, upon service arrangements of the cloud computing environment. The one or more policies may establish respective isolated computing environments in the cloud computing environment that may be used by respective users. The enforcement of the one or more policies may result in the respective isolated computing environments being virtually isolated from each other and prevented from interfering with each other in derogation of the one or more policies. The one or more policies may be established, at least in part, via interaction of at least one management process with one or more application program interfaces of the circuitry. Many modifications are possible.Type: GrantFiled: November 13, 2012Date of Patent: March 8, 2016Assignee: Intel CorporationInventor: Uri Elzur
-
Patent number: 9185097Abstract: Aspects of a method and system for traffic engineering in an IPSec secured network are provided. In this regard, a node in a network may be authenticated as a trusted third party and that trusted third party may be enabled to acquire security information shared between or among a plurality of network entities. In this manner, the trusted third party may parse, access and operate on IPSec encrypted traffic communicated between or among the plurality of network entities. Shared security information may comprise one or more session keys utilized for encrypting and/or decrypting the IPSec secured traffic. The node may parse IPSec traffic and identify a flow associated with the IPsec traffic. In this manner, the node may generate and/or communicate statistics pertaining to said IPSec secured traffic based on the flow with which the traffic is associated.Type: GrantFiled: April 8, 2013Date of Patent: November 10, 2015Assignee: Broadcom CorporationInventor: Uri Elzur
-
Patent number: 9088451Abstract: Systems and methods that network interface in a multiple network environment are provided. In one embodiment, the system includes, for example, a network connector, a processor, a peripheral component interface (PCI) bridge and a unified driver. The processor may be coupled to the network connector and to the PCI bridge. The processor may be adapted, for example, to process a plurality of different types of network traffic. The unified driver may be coupled to the PCI bridge and may be adapted to provide drivers associated with the plurality of different types of network traffic.Type: GrantFiled: January 13, 2014Date of Patent: July 21, 2015Assignee: BROADCOM CORPORATIONInventors: Uri Elzur, Frankie Fan, Steven B. Lindsay, Scott McDaniel
-
Patent number: 9036643Abstract: A method for establishing a virtual channel between network devices is disclosed. In the case of a local network device establishing a virtual channel with a remote network device, a virtual channel request message is sent from the local network device to the remote network device. A virtual channel acknowledgement message and a remote capability list are received and a virtual channel resume message and a local capability list are sent. The virtual channel is then enabled. In the case of a remote network device establishing a virtual channel with a local network device, a virtual channel request message is received from a local network device by a remote network device. A virtual channel acknowledgement message and a remote capability list are sent and a virtual channel resume message and a local capability list are received. The virtual channel is then enabled.Type: GrantFiled: July 16, 2013Date of Patent: May 19, 2015Assignee: Broadcom CorporationInventors: Shiri Kadambi, Shekhar Ambe, Mohan Kalkunte, Sandeep Relan, Allan Christie, Uri Elzur, Martin Lund, Daniel Talayco