Patents by Inventor Ido Miles Ben-Shachar
Ido Miles Ben-Shachar has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 10574505Abstract: An endpoint broker to provide application launch endpoints from multiple data centers having different tenancy sets. Upon accessing a request for an application launch endpoint connection for a user, the broker selects a data center, from amongst multiple data centers that have different tenancy sets, that is to provide an endpoint in satisfaction of the request. The endpoint broker identifies an endpoint from the selected data center, and then associates the identified endpoint with the user. The user is then provided access to the identified endpoint using the association. Thus, a user is not restricted to having an endpoint from a single data center. If there are concerns with providing an endpoint from one data center, an endpoint may be provided from another data center in a manner that is transparent to the user.Type: GrantFiled: March 20, 2019Date of Patent: February 25, 2020Assignee: Microsoft Technology Licensing, LLCInventors: Sriram Sampath, Tristan William Scott, Ido Miles Ben-Shachar, Ersev Samim Erdogan, Niraj Agarwala
-
Patent number: 10554646Abstract: Embodiments are directed to provisioning private virtual machines in a public cloud and to managing private virtual machines hosted on a public cloud. In one scenario, a computer system receives authentication information for a private domain from an entity. The entity indicates that their private virtual machines are to be provisioned on a public cloud, where the entity's private domain is accessible using the authentication information. The computer system establishes a virtual network on the public cloud which is configured to host the entity's private virtual machines, where each virtual machine hosts remote applications. The computer system establishes an authenticated connection from the virtual network to the entity's private domain using the received authentication information and provides the entity's private virtual machines on the public cloud.Type: GrantFiled: September 17, 2018Date of Patent: February 4, 2020Assignee: Microsoft Technology Licensing, LLCInventors: Amjad Hussain, Jonathan Austin Hoover, Tristan William Scott, Ido Miles Ben-Shachar, Kevin Scott London
-
Publication number: 20190222465Abstract: An endpoint broker to provide application launch endpoints from multiple data centers having different tenancy sets. Upon accessing a request for an application launch endpoint connection for a user, the broker selects a data center, from amongst multiple data centers that have different tenancy sets, that is to provide an endpoint in satisfaction of the request. The endpoint broker identifies an endpoint from the selected data center, and then associates the identified endpoint with the user. The user is then provided access to the identified endpoint using the association. Thus, a user is not restricted to having an endpoint from a single data center. If there are concerns with providing an endpoint from one data center, an endpoint may be provided from another data center in a manner that is transparent to the user.Type: ApplicationFiled: March 20, 2019Publication date: July 18, 2019Inventors: Sriram Sampath, Tristan William Scott, Ido Miles Ben-Shachar, Ersev Samim Erdogan, Niraj Agarwala
-
Publication number: 20190124060Abstract: Embodiments are directed to provisioning private virtual machines in a public cloud and to managing private virtual machines hosted on a public cloud. In one scenario, a computer system receives authentication information for a private domain from an entity. The entity indicates that their private virtual machines are to be provisioned on a public cloud, where the entity's private domain is accessible using the authentication information. The computer system establishes a virtual network on the public cloud which is configured to host the entity's private virtual machines, where each virtual machine hosts remote applications. The computer system establishes an authenticated connection from the virtual network to the entity's private domain using the received authentication information and provides the entity's private virtual machines on the public cloud.Type: ApplicationFiled: September 17, 2018Publication date: April 25, 2019Inventors: Amjad HUSSAIN, Jonathan Austin HOOVER, Tristan William SCOTT, Ido Miles BEN-SHACHAR, Kevin Scott LONDON
-
Patent number: 10243777Abstract: An endpoint broker to provide application launch endpoints from multiple data centers having different tenancy sets. Upon accessing a request for an application launch endpoint connection for a user, the broker selects a data center, from amongst multiple data centers that have different tenancy sets, that is to provide an endpoint in satisfaction of the request. The endpoint broker identifies an endpoint from the selected data center, and then associates the identified endpoint with the user. The user is then provided access to the identified endpoint using the association. Thus, a user is not restricted to having an endpoint from a single data center. If there are concerns with providing an endpoint from one data center, an endpoint may be provided from another data center in a manner that is transparent to the user.Type: GrantFiled: July 12, 2017Date of Patent: March 26, 2019Assignee: Microsoft Technology Licensing, LLCInventors: Sriram Sampath, Tristan William Scott, Ido Miles Ben-Shachar, Ersev Samim Erdogan, Niraj Agarwala
-
Patent number: 10079818Abstract: Embodiments are directed to provisioning private virtual machines in a public cloud and to managing private virtual machines hosted on a public cloud. In one scenario, a virtual network is established at a public cloud environment based on a request received from a private domain, and an authenticated session is established between the virtual network and the private domain. A virtual machine is hosted within the virtual network. The virtual machine is configured to be accessible to a user authenticated to the virtual machine, and is configured to run an application using data received from the private domain. Private data is received from the private domain over the authenticated session, and the authenticated user is provided access to the application running at the virtual machine, including providing the authenticated user access to the private data.Type: GrantFiled: April 1, 2016Date of Patent: September 18, 2018Assignee: Microsoft Technology Licensing, LLCInventors: Amjad Hussain, Jonathan Austin Hoover, Tristan William Scott, Ido Miles Ben-Shachar, Kevin Scott London
-
Publication number: 20170310534Abstract: An endpoint broker to provide application launch endpoints from multiple data centers having different tenancy sets. Upon accessing a request for an application launch endpoint connection for a user, the broker selects a data center, from amongst multiple data centers that have different tenancy sets, that is to provide an endpoint in satisfaction of the request. The endpoint broker identifies an endpoint from the selected data center, and then associates the identified endpoint with the user. The user is then provided access to the identified endpoint using the association. Thus, a user is not restricted to having an endpoint from a single data center. If there are concerns with providing an endpoint from one data center, an endpoint may be provided from another data center in a manner that is transparent to the user.Type: ApplicationFiled: July 12, 2017Publication date: October 26, 2017Inventors: Sriram Sampath, Tristan William Scott, Ido Miles Ben-Shachar, Ersev Samim Erdogan, Niraj Agarwala
-
Patent number: 9722853Abstract: An endpoint broker to provide application launch endpoints from multiple data centers having different tenancy sets. Upon accessing a request for an application launch endpoint connection for a user, the broker selects a data center, from amongst multiple data centers that have different tenancy sets, that is to provide an endpoint in satisfaction of the request. The endpoint broker identifies an endpoint from the selected data center, and then associates the identified endpoint with the user. The user is then provided access to the identified endpoint using the association. Thus, a user is not restricted to having an endpoint from a single data center. If there are concerns with providing an endpoint from one data center, an endpoint may be provided from another data center in a manner that is transparent to the user.Type: GrantFiled: January 14, 2016Date of Patent: August 1, 2017Assignee: Microsoft Technology Licensing, LLCInventors: Sriram Sampath, Tristan William Scott, Ido Miles Ben-Shachar, Ersev Samim Erdogan, Niraj Agarwala
-
Patent number: 9537742Abstract: The adjustment of a number of application launch endpoint servers that may be used to service incoming connection requests. Application launch endpoints are entities, such as running code, that may be used to launch other applications. Examples of endpoints include virtual machines or sessions in a session management server. The system load associated with the incoming connection rate and number of users is monitored. In response, an add threshold and a perhaps a remove threshold is calculated. If the system load rises above the add threshold, application launch endpoint server(s) are added to the set of endpoints that can handle incoming connection requests. If the system load falls below the remove threshold, application launch endpoint server(s) are removed from to the set of endpoints. The add and remove thresholds may be calculated per tenant, and adjusted based on tenant behavior.Type: GrantFiled: June 25, 2013Date of Patent: January 3, 2017Assignee: Microsoft Technology Licensing LLCInventors: Munindra Nath Das, Sriram Sampath, Sergey A. Kuzin, Amjad Hussain, Ido Miles Ben-Shachar, Jingyuan Li, Nihar Namjoshi
-
Publication number: 20160373424Abstract: Embodiments are directed to provisioning private virtual machines in a public cloud and to managing private virtual machines hosted on a public cloud. In one scenario, a virtual network is established at a public cloud environment based on a request received from a private domain, and an authenticated session is established between the virtual network and the private domain. A virtual machine is hosted within the virtual network. The virtual machine is configured to be accessible to a user authenticated to the virtual machine, and is configured to run an application using data received from the private domain. Private data is received from the private domain over the authenticated session, and the authenticated user is provided access to the application running at the virtual machine, including providing the authenticated user access to the private data.Type: ApplicationFiled: April 1, 2016Publication date: December 22, 2016Inventors: Amjad Hussain, Jonathan Austin Hoover, Tristan William Scott, Ido Miles Ben-Shachar, Kevin Scott London
-
Publication number: 20160134461Abstract: An endpoint broker to provide application launch endpoints from multiple data centers having different tenancy sets. Upon accessing a request for an application launch endpoint connection for a user, the broker selects a data center, from amongst multiple data centers that have different tenancy sets, that is to provide an endpoint in satisfaction of the request. The endpoint broker identifies an endpoint from the selected data center, and then associates the identified endpoint with the user. The user is then provided access to the identified endpoint using the association. Thus, a user is not restricted to having an endpoint from a single data center. If there are concerns with providing an endpoint from one data center, an endpoint may be provided from another data center in a manner that is transparent to the user.Type: ApplicationFiled: January 14, 2016Publication date: May 12, 2016Inventors: Sriram Sampath, Tristan William Scott, Ido Miles Ben-Shachar, Ersev Samim Erdogan, Niraj Agarwala
-
Patent number: 9313188Abstract: Embodiments are directed to provisioning private virtual machines in a public cloud and to managing private virtual machines hosted on a public cloud. In one scenario, a computer system receives authentication information for a private domain from an entity. The entity indicates that their private virtual machines are to be provisioned on a public cloud, where the entity's private domain is accessible using the authentication information. The computer system establishes a virtual network on the public cloud which is configured to host the entity's private virtual machines, where each virtual machine hosts remote applications. The computer system establishes an authenticated connection from the virtual network to the entity's private domain using the received authentication information and provides the entity's private virtual machines on the public cloud.Type: GrantFiled: June 14, 2013Date of Patent: April 12, 2016Assignee: Microsoft Technology Licensing, LLCInventors: Amjad Hussain, Jonathan Austin Hoover, Tristan William Scott, Ido Miles Ben-Shachar, Kevin Scott London
-
Patent number: 9264289Abstract: An endpoint broker to provide application launch endpoints from multiple data centers having different tenancy sets. Upon accessing a request for an application launch endpoint connection for a user, the broker selects a data center, from amongst multiple data centers that have different tenancy sets, that is to provide an endpoint in satisfaction of the request. The endpoint broker identifies an endpoint from the selected data center, and then associates the identified endpoint with the user. The user is then provided access to the identified endpoint using the association. Thus, a user is not restricted to having an endpoint from a single data center. If there are concerns with providing an endpoint from one data center, an endpoint may be provided from another data center in a manner that is transparent to the user.Type: GrantFiled: June 27, 2013Date of Patent: February 16, 2016Assignee: Microsoft Technology Licensing, LLCInventors: Sriram Sampath, Tristan William Scott, Ido Miles Ben-Shachar, Ersev Samim Erdogan, Niraj Agarwala
-
Patent number: 9164755Abstract: The updating of virtual machines. A task broker schedules update tasks for multiple virtual machines on the host machine. As each update task is to be performed, if the virtual machine is not currently running, as might be the case for a personal virtual machine, the virtual machine is caused to begin running to allow the update task to be performed on the virtual machine. Also, a pooled virtual machine is updated by copying information from the old virtual hard drive to a location to allow the information to be preserved as the master image is updated. After the update is completed, the virtual machine is formed, associated with the new virtual hard drive, and copied back to the virtual machine.Type: GrantFiled: June 4, 2014Date of Patent: October 20, 2015Assignee: Microsoft Technology Licensing, LLCInventors: Robert K. Leitman, Kashif Mehmood, Amjad Hussain, Ido Miles Ben-Shachar, Sriram Sampath, Ajay Kumar
-
Patent number: 9124569Abstract: Embodiments are directed to authenticating a user to a remote application provisioning service. In one scenario, a client computer system receives authentication credentials from a user at to authenticate the user to a remote application provisioning service that provides virtual machine-hosted remote applications. The client computer system sends the received authentication credentials to an authentication service, which is configured to generate an encrypted token based on the received authentication credentials. The client computer system then receives the generated encrypted token from the authentication service, stores the received encrypted token and the received authentication credentials in a data store, and sends the encrypted token to the remote application provisioning service. The encrypted token indicates to the remote application provisioning service that the user is a valid user.Type: GrantFiled: June 14, 2013Date of Patent: September 1, 2015Assignee: Microsoft Technology Licensing, LLCInventors: Amjad Hussain, Andrew Eremenko, Mahadeva Kumar Alladi, Sriram Sampath, Tristan William Scott, Travis Michael Howe, Ido Miles Ben-Shachar
-
Publication number: 20150006609Abstract: An endpoint broker to provide application launch endpoints from multiple data centers having different tenancy sets. Upon accessing a request for an application launch endpoint connection for a user, the broker selects a data center, from amongst multiple data centers that have different tenancy sets, that is to provide an endpoint in satisfaction of the request. The endpoint broker identifies an endpoint from the selected data center, and then associates the identified endpoint with the user. The user is then provided access to the identified endpoint using the association. Thus, a user is not restricted to having an endpoint from a single data center. If there are concerns with providing an endpoint from one data center, an endpoint may be provided from another data center in a manner that is transparent to the user.Type: ApplicationFiled: June 27, 2013Publication date: January 1, 2015Inventors: Sriram Sampath, Tristan William Scott, Ido Miles Ben-Shachar, Ersev Samim Erdogan, Niraj Agarwala
-
Publication number: 20140379899Abstract: The adjustment of a number of application launch endpoint servers that may be used to service incoming connection requests. Application launch endpoints are entities, such as running code, that may be used to launch other applications. Examples of endpoints include virtual machines or sessions in a session management server. The system load associated with the incoming connection rate and number of users is monitored. In response, an add threshold and a perhaps a remove threshold is calculated. If the system load rises above the add threshold, application launch endpoint server(s) are added to the set of endpoints that can handle incoming connection requests. If the system load falls below the remove threshold, application launch endpoint server(s) are removed from to the set of endpoints. The add and remove thresholds may be calculated per tenant, and adjusted based on tenant behavior.Type: ApplicationFiled: June 25, 2013Publication date: December 25, 2014Inventors: Munindra Nath Das, Sriram Sampath, Sergey A. Kuzin, Amjad Hussain, Ido Miles Ben-Shachar, Jingyuan Li, Nihar Namjoshi
-
Publication number: 20140373126Abstract: Embodiments are directed to authenticating a user to a remote application provisioning service. In one scenario, a client computer system receives authentication credentials from a user at to authenticate the user to a remote application provisioning service that provides virtual machine-hosted remote applications. The client computer system sends the received authentication credentials to an authentication service, which is configured to generate an encrypted token based on the received authentication credentials. The client computer system then receives the generated encrypted token from the authentication service, stores the received encrypted token and the received authentication credentials in a data store, and sends the encrypted token to the remote application provisioning service. The encrypted token indicates to the remote application provisioning service that the user is a valid user.Type: ApplicationFiled: June 14, 2013Publication date: December 18, 2014Inventors: Amjad Hussain, Andrew Eremenko, Mahadeva Kumar Alladi, Sriram Sampath, Tristan William Scott, Travis Michael Howe, Ido Miles Ben-Shachar
-
Publication number: 20140373092Abstract: Embodiments are directed to provisioning private virtual machines in a public cloud and to managing private virtual machines hosted on a public cloud. In one scenario, a computer system receives authentication information for a private domain from an entity. The entity indicates that their private virtual machines are to be provisioned on a public cloud, where the entity's private domain is accessible using the authentication information. The computer system establishes a virtual network on the public cloud which is configured to host the entity's private virtual machines, where each virtual machine hosts remote applications. The computer system establishes an authenticated connection from the virtual network to the entity's private domain using the received authentication information and provides the entity's private virtual machines on the public cloud.Type: ApplicationFiled: June 14, 2013Publication date: December 18, 2014Inventors: Amjad Hussain, Jonathan Austin Hoover, Tristan William Scott, Ido Miles Ben-Shachar, Kevin Scott London
-
Publication number: 20140289718Abstract: The updating of virtual machines. A task broker schedules update tasks for multiple virtual machines on the host machine. As each update task is to be performed, if the virtual machine is not currently running, as might be the case for a personal virtual machine, the virtual machine is caused to begin running to allow the update task to be performed on the virtual machine. Also, a pooled virtual machine is updated by copying information from the old virtual hard drive to a location to allow the information to be preserved as the master image is updated. After the update is completed, the virtual machine is formed, associated with the new virtual hard drive, and copied back to the virtual machine.Type: ApplicationFiled: June 4, 2014Publication date: September 25, 2014Inventors: Robert K. Leitman, Kashif Mehmood, Amjad Hussain, Ido Miles Ben-Shachar, Sriram Sampath, Ajay Kumar