Patents by Inventor ALEKSANDR MIKHAILOVICH GERSHAFT
ALEKSANDR MIKHAILOVICH GERSHAFT has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Publication number: 20240015114Abstract: A method for nonintrusive network load generation may include determining available resources in a distributed computing system, where the distributed computing system includes a plurality of computing devices and a target deployment. Based on an amount of available resources between the target deployment and a plurality of source computing devices, the plurality of source computing devices may be selected to generate a network load directed from the plurality of source computing devices to the target deployment. The plurality of source computing devices may be a subset of the plurality of computing devices in the distributed computing system. A network-traffic generator service may be provided to the plurality of source computing devices in order to generate the network load directed from the plurality of source computing devices to the target deployment. The performance of the distributed computing system in response to the generated network load may be monitored.Type: ApplicationFiled: September 19, 2023Publication date: January 11, 2024Applicant: Microsoft Technology Licensing, LLCInventors: Marwan E. JUBRAN, Aleksandr Mikhailovich GERSHAFT, Weiping HU
-
Patent number: 11757720Abstract: Various methods and systems for implementing dependency management for an infrastructure are provided. A dependency service manager of the dependency management system includes a plurality of dependency management system components that facilitate automatically discovering and analyzing data to generate dependency data. The dependency data includes dependencies and dependents of dependency service tenants which are tenant services of the infrastructure. The dependency data is generated based on data retrieved by a plurality of collectors. A collector from the plurality of collectors is an agent that retrieves data associated with dependency service tenants based on a corresponding collection time attribute of the collector. A collector accesses data for generating the dependency data at one of the following collection times: design time, deployment time and runtime.Type: GrantFiled: September 19, 2019Date of Patent: September 12, 2023Assignee: MICROSOFT TECHNOLOGY LICENSING, LLCInventors: Aleksandr Mikhailovich Gershaft, Weiping Hu, Marwan E. Jubran
-
Publication number: 20230239194Abstract: To improve the reliability of nodes that are utilized by a cloud computing provider, information about the entire lifecycle of nodes can be collected and used to predict when nodes are likely to experience failures based at least in part on early lifecycle errors. In one aspect, a plurality of failure issues experienced by a plurality of production nodes in a cloud computing system during a pre-production phase can be identified. A subset of the plurality of failure issues can be selected based at least in part on correlation with service outages for the plurality of production nodes during a production phase. A comparison can be performed between the subset of the plurality of failure issues and a set of failure issues experienced by a pre-production node during the pre-production phase. A risk score for the pre-production node can be calculated based at least in part on the comparison.Type: ApplicationFiled: January 26, 2023Publication date: July 27, 2023Inventors: Sanjay RAMANUJAN, Luke Rafael RODRIGUEZ, Muhammad Khizar QAZI, Aleksandr Mikhailovich GERSHAFT, Marwan Elias JUBRAN, Saurabh AGARWAL
-
Patent number: 11582087Abstract: To improve the reliability of nodes that are utilized by a cloud computing provider, information about the entire lifecycle of nodes can be collected and used to predict when nodes are likely to experience failures based at least in part on early lifecycle errors. In one aspect, a plurality of failure issues experienced by a plurality of production nodes in a cloud computing system during a pre-production phase can be identified. A subset of the plurality of failure issues can be selected based at least in part on correlation with service outages for the plurality of production nodes during a production phase. A comparison can be performed between the subset of the plurality of failure issues and a set of failure issues experienced by a pre-production node during the pre-production phase. A risk score for the pre-production node can be calculated based at least in part on the comparison.Type: GrantFiled: December 17, 2019Date of Patent: February 14, 2023Assignee: MICROSOFT TECHNOLOGY LICENSING, LLCInventors: Sanjay Ramanujan, Luke Rafael Rodriguez, Muhammad Khizar Qazi, Aleksandr Mikhailovich Gershaft, Marwan Elias Jubran, Saurabh Agarwal
-
Publication number: 20220329425Abstract: Methods, media, and systems for secure provisioning of servers within a cloud computing environment are provided for herein. In some embodiments, a management service can delegate provisioning of a server of the cloud computing environment to an imaging service. In response, the imaging service can generate an operating system image for the server and can utilize disk encryption to protect to operating system image. In embodiments, a volume encryption key of the disk encryption can be encrypted utilizing a public key of a trusted platform manager of the server, to produce an encrypted volume encryption key that is protected by the trusted platform module of the server. The encrypted operating system image and the encrypted volume encryption key can then be transmitted to the server to cause the server to be provisioned with the operating system image. Other embodiments may be described and/or claimed herein.Type: ApplicationFiled: July 1, 2022Publication date: October 13, 2022Inventors: Ulrich Mueller, Aleksandr Mikhailovich Gershaft, Christopher W. McCarron, Marwan E. Jubran
-
Patent number: 11394548Abstract: Methods, media, and systems for secure provisioning of servers within a cloud computing environment are provided for herein. In some embodiments, a management service can delegate provisioning of a server of the cloud computing environment to an imaging service. In response, the imaging service can generate an operating system image for the server and can utilize disk encryption to protect to operating system image. In embodiments, a volume encryption key of the disk encryption can be encrypted utilizing a public key of a trusted platform manager of the server, to produce an encrypted volume encryption key that is protected by the trusted platform module of the server. The encrypted operating system image and the encrypted volume encryption key can then be transmitted to the server to cause the server to be provisioned with the operating system image. Other embodiments may be described and/or claimed herein.Type: GrantFiled: September 9, 2019Date of Patent: July 19, 2022Assignee: MICROSOFT TECHNOLOGY LICENSING, LLCInventors: Ulrich Mueller, Aleksandr Mikhailovich Gershaft, Christopher W. McCarron, Marwan E. Jubran
-
Publication number: 20220045968Abstract: A method for nonintrusive network load generation may include determining available resources in a distributed computing system, where the distributed computing system includes a plurality of computing devices and a target deployment. Based on an amount of available resources between the target deployment and a plurality of source computing devices, the plurality of source computing devices may be selected to generate a network load directed from the plurality of source computing devices to the target deployment. The plurality of source computing devices may be a subset of the plurality of computing devices in the distributed computing system. A network-traffic generator service may be provided to the plurality of source computing devices in order to generate the network load directed from the plurality of source computing devices to the target deployment. The performance of the distributed computing system in response to the generated network load may be monitored.Type: ApplicationFiled: October 20, 2021Publication date: February 10, 2022Inventors: MARWAN E. JUBRAN, ALEKSANDR MIKHAILOVICH GERSHAFT, WEIPING HU
-
Patent number: 11201805Abstract: In embodiments, methods and systems for implementing an infrastructure management system that supports hardware failure remediation are provided. A determination is made that a failure of a hardware component has occurred. The hardware component is part of a hardware composite. A remediation attribute of the hardware composite is accessed. The remediation attribute indicates a minimum operational bar for the hardware composite. The minimum operational bar is based on health metrics or optional and required components of the hardware composite. The bar supports determining whether the hardware composite should operate in a degraded state. A determination is made that the hardware composite if operating without the hardware component that has failed meets the minimum operational bar for the hardware composite. Operation of the hardware composite in the degraded state is initiated.Type: GrantFiled: December 21, 2018Date of Patent: December 14, 2021Assignee: Microsoft Technology Licensing, LLCInventors: Ulrich Mueller, Jiwu Liu, Marwan E. Jubran, Aleksandr Mikhailovich Gershaft
-
Patent number: 11159450Abstract: A method for nonintrusive network load generation may include determining available resources in a distributed computing system, where the distributed computing system includes a plurality of computing devices and a target deployment. Based on an amount of available resources between the target deployment and a plurality of source computing devices, the plurality of source computing devices may be selected to generate a network load directed from the plurality of source computing devices to the target deployment. The plurality of source computing devices may be a subset of the plurality of computing devices in the distributed computing system. A network-traffic generator service may be provided to the plurality of source computing devices in order to generate the network load directed from the plurality of source computing devices to the target deployment. The performance of the distributed computing system in response to the generated network load may be monitored.Type: GrantFiled: March 2, 2020Date of Patent: October 26, 2021Assignee: Microsoft Technology Licensing, LLCInventors: Marwan E. Jubran, Aleksandr Mikhailovich Gershaft, Weiping Hu
-
Publication number: 20210184916Abstract: To improve the reliability of nodes that are utilized by a cloud computing provider, information about the entire lifecycle of nodes can be collected and used to predict when nodes are likely to experience failures based at least in part on early lifecycle errors. In one aspect, a plurality of failure issues experienced by a plurality of production nodes in a cloud computing system during a pre-production phase can be identified. A subset of the plurality of failure issues can be selected based at least in part on correlation with service outages for the plurality of production nodes during a production phase. A comparison can be performed between the subset of the plurality of failure issues and a set of failure issues experienced by a pre-production node during the pre-production phase. A risk score for the pre-production node can be calculated based at least in part on the comparison.Type: ApplicationFiled: December 17, 2019Publication date: June 17, 2021Inventors: Sanjay RAMANUJAN, Luke Rafael RODRIGUEZ, Muhammad Khizar QAZI, Aleksandr Mikhailovich GERSHAFT, Marwan Elias JUBRAN, Saurabh AGARWAL
-
Patent number: 10931527Abstract: Various methods and systems for implementing an autonomous configuration system for configuring a service infrastructure are provided. An autonomous configuration system implements a service infrastructure configuration manager to identify discovered configuration data. The discovered configuration data supports circumventing a routing protocol for service infrastructure communications via an edge infrastructure, such that, the service infrastructure is alternatively configured to access remote configuration data based on the discovered configuration data. The discovered configuration data is discovered based an autonomous discovery service (e.g., sniffing service or a casting service). An initial configuration state is configured in the service infrastructure, based on the discovered configuration data. The service infrastructure can communicate with a service provider infrastructure associated with the service infrastructure to access the remote configuration data.Type: GrantFiled: July 19, 2019Date of Patent: February 23, 2021Assignee: Microsoft Technology Licensing, LLCInventors: Joel Maximilian Merk, Hang Kwong Lee, Aleksandr Mikhailovich Gershaft
-
Publication number: 20200204498Abstract: A method for nonintrusive network load generation may include determining available resources in a distributed computing system, where the distributed computing system includes a plurality of computing devices and a target deployment. Based on an amount of available resources between the target deployment and a plurality of source computing devices, the plurality of source computing devices may be selected to generate a network load directed from the plurality of source computing devices to the target deployment. The plurality of source computing devices may be a subset of the plurality of computing devices in the distributed computing system. A network-traffic generator service may be provided to the plurality of source computing devices in order to generate the network load directed from the plurality of source computing devices to the target deployment. The performance of the distributed computing system in response to the generated network load may be monitored.Type: ApplicationFiled: March 2, 2020Publication date: June 25, 2020Inventors: MARWAN E. JUBRAN, ALEKSANDR MIKHAILOVICH GERSHAFT, WEIPING HU
-
Publication number: 20200112435Abstract: Methods, media, and systems for secure provisioning of servers within a cloud computing environment are provided for herein. In some embodiments, a management service can delegate provisioning of a server of the cloud computing environment to an imaging service. In response, the imaging service can generate an operating system image for the server and can utilize disk encryption to protect to operating system image. In embodiments, a volume encryption key of the disk encryption can be encrypted utilizing a public key of a trusted platform manager of the server, to produce an encrypted volume encryption key that is protected by the trusted platform module of the server. The encrypted operating system image and the encrypted volume encryption key can then be transmitted to the server to cause the server to be provisioned with the operating system image. Other embodiments may be described and/or claimed herein.Type: ApplicationFiled: September 9, 2019Publication date: April 9, 2020Inventors: Ulrich Mueller, Aleksandr Mikhailovich Gershaft, Christopher W. McCarron, Marwan E. Jubran
-
Publication number: 20200076701Abstract: Various methods and systems for implementing dependency management for an infrastructure are provided. A dependency service manager of the dependency management system includes a plurality of dependency management system components that facilitate automatically discovering and analyzing data to generate dependency data. The dependency data includes dependencies and dependents of dependency service tenants which are tenant services of the infrastructure. The dependency data is generated based on data retrieved by a plurality of collectors. A collector from the plurality of collectors is an agent that retrieves data associated with dependency service tenants based on a corresponding collection time attribute of the collector. A collector accesses data for generating the dependency data at one of the following collection times: design time, deployment time and runtime.Type: ApplicationFiled: September 19, 2019Publication date: March 5, 2020Inventors: ALEKSANDR MIKHAILOVICH GERSHAFT, WEIPING HU, MARWAN E. JUBRAN
-
Patent number: 10581756Abstract: A method for nonintrusive network load generation may include determining available resources in a distributed computing system, where the distributed computing system includes a plurality of computing devices and a target deployment. Based on an amount of available resources between the target deployment and a plurality of source computing devices, the plurality of source computing devices may be selected to generate a network load directed from the plurality of source computing devices to the target deployment. The plurality of source computing devices may be a subset of the plurality of computing devices in the distributed computing system. A network-traffic generator service may be provided to the plurality of source computing devices in order to generate the network load directed from the plurality of source computing devices to the target deployment. The performance of the distributed computing system in response to the generated network load may be monitored.Type: GrantFiled: September 9, 2014Date of Patent: March 3, 2020Assignee: MICROSOFT TECHNOLOGY LICENSING, LLCInventors: Marwan E. Jubran, Aleksandr Mikhailovich Gershaft, Weiping Hu
-
Publication number: 20190386902Abstract: In embodiments, methods and systems for implementing an infrastructure management system that supports hardware failure remediation are provided. A determination is made that a failure of a hardware component has occurred. The hardware component is part of a hardware composite. A remediation attribute of the hardware composite is accessed. The remediation attribute indicates a minimum operational bar for the hardware composite. The minimum operational bar is based on health metrics or optional and required components of the hardware composite. The bar supports determining whether the hardware composite should operate in a degraded state. A determination is made that the hardware composite if operating without the hardware component that has failed meets the minimum operational bar for the hardware composite. Operation of the hardware composite in the degraded state is initiated.Type: ApplicationFiled: December 21, 2018Publication date: December 19, 2019Inventors: Ulrich MUELLER, Jiwu LIU, Marwan E. JUBRAN, Aleksandr MIKHAILOVICH GERSHAFT
-
Publication number: 20190342171Abstract: Various methods and systems for implementing an autonomous configuration system for configuring a service infrastructure are provided. An autonomous configuration system implements a service infrastructure configuration manager to identify discovered configuration data. The discovered configuration data supports circumventing a routing protocol for service infrastructure communications via an edge infrastructure, such that, the service infrastructure is alternatively configured to access remote configuration data based on the discovered configuration data. The discovered configuration data is discovered based an autonomous discovery service (e.g., sniffing service or a casting service). An initial configuration state is configured in the service infrastructure, based on the discovered configuration data. The service infrastructure can communicate with a service provider infrastructure associated with the service infrastructure to access the remote configuration data.Type: ApplicationFiled: July 19, 2019Publication date: November 7, 2019Inventors: Joel Maximilian Merk, Hang Kwong Lee, Aleksandr Mikhailovich Gershaft
-
Patent number: 10432471Abstract: Various methods and systems for implementing dependency management for an infrastructure are provided. A dependency service manager of the dependency management system includes a plurality of dependency management system components that facilitate automatically discovering and analyzing data to generate dependency data. The dependency data includes dependencies and dependents of dependency service tenants which are tenant services of the infrastructure. The dependency data is generated based on data retrieved by a plurality of collectors. A collector from the plurality of collectors is an agent that retrieves data associated with dependency service tenants based on a corresponding collection time attribute of the collector. A collector accesses data for generating the dependency data at one of the following collection times: design time, deployment time and runtime.Type: GrantFiled: August 22, 2016Date of Patent: October 1, 2019Assignee: MICROSOFT TECHNOLOGY LICENSING, LLCInventors: Aleksandr Mikhailovich Gershaft, Weiping Hu, Marwan E. Jubran
-
Patent number: 10425229Abstract: Methods, media, and systems for secure provisioning of servers within a cloud computing environment are provided for herein. In some embodiments, a management service can delegate provisioning of a server of the cloud computing environment to an imaging service. In response, the imaging service can generate an operating system image for the server and can utilize disk encryption to protect to operating system image. In embodiments, a volume encryption key of the disk encryption can be encrypted utilizing a public key of a trusted platform manager of the server, to produce an encrypted volume encryption key that is protected by the trusted platform module of the server. The encrypted operating system image and the encrypted volume encryption key can then be transmitted to the server to cause the server to be provisioned with the operating system image. Other embodiments may be described and/or claimed herein.Type: GrantFiled: February 12, 2016Date of Patent: September 24, 2019Assignee: MICROSOFT TECHNOLOGY LICENSING, LLCInventors: Ulrich Mueller, Aleksandr Mikhailovich Gershaft, Christopher W. McCarron, Marwan E. Jubran
-
Patent number: 10389591Abstract: Various methods and systems for implementing an autonomous configuration system for configuring a service infrastructure are provided. An autonomous configuration system implements a service infrastructure configuration manager to identify discovered configuration data. The discovered configuration data supports circumventing a routing protocol for service infrastructure communications via an edge infrastructure, such that, the service infrastructure is alternatively configured to access remote configuration data based on the discovered configuration data. The discovered configuration data is discovered based an autonomous discovery service (e.g., sniffing service or a casting service). An initial configuration state is configured in the service infrastructure, based on the discovered configuration data. The service infrastructure can communicate with a service provider infrastructure associated with the service infrastructure to access the remote configuration data.Type: GrantFiled: October 28, 2016Date of Patent: August 20, 2019Assignee: MICROSOFT TECHNOLOGY LICENSING, LLCInventors: Joel Maximilian Merk, Hang Kwong Lee, Aleksandr Mikhailovich Gershaft