Patents by Inventor Nisheeth Srivastava
Nisheeth Srivastava has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 11960916Abstract: The disclosed technology is generally directed to virtual machines. In one example of the technology, a network change from a first virtual network to a second virtual network is reconfigured for a first virtual machine that is executing on a first virtual machine host. The reconfiguring includes the following. In the first virtual machine host, a mapping change from the first virtual network to the second virtual network is configured by reprogramming drivers in the first virtual machine host for route mapping for the second virtual network. A Dynamic Host Configuration Protocol (DHCP) retrigger is caused without rebooting the first virtual machine. A configuration file is provided to the first virtual machine. The configuration file includes user-specific networking settings. The first virtual machine is reconfigured in accordance with the user-specific networking settings.Type: GrantFiled: April 19, 2021Date of Patent: April 16, 2024Assignee: Microsoft Technology Licensing, LLCInventors: Sushant Pramod Rewaskar, Md. Daud Hossain Howlader, Ashish Bhargava, Nisheeth Srivastava, Naveen Prabhat, Jayesh Kumaran, Xinyan Zan, Abhishek Shukla, Rishabh Tewari
-
Patent number: 11621869Abstract: Systems and methods for enabling access to dedicated resources in a virtual network using top of rack switches are disclosed. A method includes a virtual filtering platform encapsulating at least one packet, received from a virtual machine, to generate at least one encapsulated packet comprising a virtual network identifier (VNI). The method further includes a TOR switch: (1) receiving the at least one encapsulated packet and decapsulating the at least one encapsulated packet to create at least one decapsulated packet, (2) using the VNI to identify a virtual routing and forwarding artifact to determine a virtual local area network interface associated with the dedicated hardware portion, and (3) transmitting the at least one decapsulated packet to the dedicated hardware portion based on at least one policy provided by a controller, where the at least one policy comprises information related to a customer of the service provider.Type: GrantFiled: August 20, 2021Date of Patent: April 4, 2023Assignee: Microsoft Technology Licensing, LLCInventors: Neeraj Motwani, Rishabh Tewari, Pranjal Shrivastava, Deepak Bansal, Vaibhav Kumar, Nisheeth Srivastava, Abhishek Shukla, Rangaprasad Narasimhan, Vinayak Uppunda Padiyar, James Boerner, Avijit Gupta
-
Patent number: 11599380Abstract: A virtual network interface controller (NIC) associated with a virtual machine in a cloud computing network is configured to support one or more network containers that encapsulate networking configuration data and policies that are applicable to a specific discrete computing workload to thereby enable the virtual machine to simultaneously belong to multiple virtual networks using the single NIC. The network containers supported by the NIC can be associated with a single tenant to enable additional flexibility such quickly switching between virtual networks and support pre-provisioning of additional computing resources with associated networking policies for rapid deployment. The network containers can also be respectively associated with different tenants so that the single NIC can support multi-tenant services on the same virtual machine.Type: GrantFiled: April 27, 2021Date of Patent: March 7, 2023Assignee: Microsoft Technology Licensing, LLCInventors: Abhishek Shukla, Abhishek Ellore Sreenath, Neha Aggarwal, Naveen Prabhat, Nisheeth Srivastava, Xinyan Zan, Ashish Bhargava, Parag Sharma, Rishabh Tewari
-
Patent number: 11582217Abstract: The disclosed system implements techniques to secure communications for injecting a workload (e.g., a container) into a virtual network hosted by a cloud-based platform. Based on a delegation instruction received from a tenant, a virtual network of the tenant can connect to and execute a workload via a virtual machine that is part of a virtual network that belongs to a resource provider. To secure calls and authorize access to the tenant's virtual network, authentication information provided with a call from the virtual network of the resource provider may need to match authorization information made available via a publication service of the cloud-based platform. Additionally or alternatively, an identifier of a NIC used to make a call may need to correspond to a registered name of the resource provider for the call to be authorized. These checks provide increased security by preventing unauthorized calls to the tenant's virtual network.Type: GrantFiled: June 10, 2021Date of Patent: February 14, 2023Assignee: MICROSOFT TECHNOLOGY LICENSING, LLCInventors: Abhijeet Kumar, Aanand Ramachandran, Jayesh Kumaran, David Michael Brumley, Rishabh Tewari, Nisheeth Srivastava, Sushant Sharma, Deepak Bansal, Abhishek Ellore Sreenath, Parag Sharma, Abhishek Shukla, Avijit Gupta
-
Publication number: 20220400074Abstract: A system includes reception of an instruction to send a message to a computer server, determination of a plurality of segments of the message, determination, for each of the plurality of segments, of a network path from a plurality of network paths to the computer server based on performance-related characteristics of the plurality of network paths, and assignment, for each of the plurality of segments, of the segment to a transmission queue associated with the network path determined for the segment.Type: ApplicationFiled: June 9, 2021Publication date: December 15, 2022Inventors: Arvind SRINIVASAN, Nisheeth SRIVASTAVA
-
Publication number: 20220377045Abstract: Techniques of network virtualization of containers in cloud-based system are disclosed herein. In one embodiment, a method includes receiving a selection of a host in the computer system to instantiate a container in response to a request from a user. In response to the received selection, the method includes identifying parameters of network operations on the selected host to instantiate the requested container and assigning a network address to the container to be instantiated on the selected host in the computer system, the assigned network address is addressable from outside of the selected host without network name translation. The method can then include transmitting an instruction to the selected host to instantiate the requested container based on the assigned network address.Type: ApplicationFiled: August 3, 2022Publication date: November 24, 2022Inventors: Deepak BANSAL, Nisheeth SRIVASTAVA, Sushant SHARMA
-
Patent number: 11509592Abstract: A network endpoint receiver controls packet flow from a transmitter. Packets are received via a network in packet traffic according to a push mode, where the transmitter controls pacing of transmitting the packets. Characteristics related to the packet traffic are monitored at the receiver. The monitored characteristics are compared to reception performance parameters, and based on the comparison, a decision is made to switch from the push mode to a pull mode for controlling the packet flow. The receiver transmits a pull mode request packet to the transmitter, where the pull mode request packet indicates a pacing of subsequent packets transmitted by the transmitter to the receiver in accordance with the pull mode. Pacing of further transmitted packets may be controlled by subsequent pull mode request packets sent over time to the transmitter by the receiver. Similarly, the receiver may control additional transmitters to transmit at equal or different rates.Type: GrantFiled: February 8, 2021Date of Patent: November 22, 2022Assignee: MICROSOFT TECHNOLOGY LICENSING, LLCInventors: Arvind Srinivasan, Nisheeth Srivastava, David Andreas Sidler
-
Publication number: 20220255872Abstract: A network endpoint receiver controls packet flow from a transmitter. Packets are received via a network in packet traffic according to a push mode, where the transmitter controls pacing of transmitting the packets. Characteristics related to the packet traffic are monitored at the receiver. The monitored characteristics are compared to reception performance parameters, and based on the comparison, a decision is made to switch from the push mode to a pull mode for controlling the packet flow. The receiver transmits a pull mode request packet to the transmitter, where the pull mode request packet indicates a pacing of subsequent packets transmitted by the transmitter to the receiver in accordance with the pull mode. Pacing of further transmitted packets may be controlled by subsequent pull mode request packets sent over time to the transmitter by the receiver. Similarly, the receiver may control additional transmitters to transmit at equal or different rates.Type: ApplicationFiled: February 8, 2021Publication date: August 11, 2022Inventors: Arvind SRINIVASAN, Nisheeth SRIVASTAVA, David Andreas SIDLER
-
Patent number: 11310241Abstract: The disclosed system implements techniques to enable a tenant of a cloud-based platform to effectively and efficiently apply a policy that copies data packets communicated to or from a virtual machine in the tenant's own virtual network. When applied, the policy mirrors data traffic associated with a workload executing on a virtual machine in the tenant's virtual network. To mirror the data traffic, a copy of a data packet is streamed to another virtual machine so that network analytics can be performed (e.g., performance analytics, security analytics, etc.). In various examples, the policy can be a role-based mirroring policy that defines a plurality of roles in association with a role-based access model that scales operations and that provides improved security for a tenant's virtual network.Type: GrantFiled: December 27, 2018Date of Patent: April 19, 2022Assignee: MICROSOFT TECHNOLOGY LICENSING, LLCInventors: Chandrasekar Srinivasan, Neha Aggarwal, Deven Jagasia, Fengfen Liu, Karthik Ananthakrishnan, Avijit Gupta, Ganesh Srinivasan, Nisheeth Srivastava, Rishabh Tewari, Michal Czeslaw Zygmunt, Harish Kumar Chandrappa, Gabriel Silva, Naveen Prabhat, Sumit Sharad Dhoble, Xinyan Zan, Maitrey Kumar, Wei Xia
-
Publication number: 20220038308Abstract: Systems and methods for enabling access to dedicated resources in a virtual network using top of rack switches are disclosed. A method includes a virtual filtering platform encapsulating at least one packet, received from a virtual machine, to generate at least one encapsulated packet comprising a virtual network identifier (VNI). The method further includes a TOR switch: (1) receiving the at least one encapsulated packet and decapsulating the at least one encapsulated packet to create at least one decapsulated packet, (2) using the VNI to identify a virtual routing and forwarding artifact to determine a virtual local area network interface associated with the dedicated hardware portion, and (3) transmitting the at least one decapsulated packet to the dedicated hardware portion based on at least one policy provided by a controller, where the at least one policy comprises information related to a customer of the service provider.Type: ApplicationFiled: August 20, 2021Publication date: February 3, 2022Inventors: Neeraj Motwani, Rishabh Tewari, Pranjal Shrivastava, Deepak Bansal, Vaibhav Kumar, Nisheeth Srivastava, Abhishek Shukla, Rangaprasad Narasimhan, Vinayak Uppunda Padiyar, James Boerner, Avijit Gupta
-
Publication number: 20210389967Abstract: A virtual network interface controller (NIC) associated with a virtual machine in a cloud computing network is configured to support one or more network containers that encapsulate networking configuration data and policies that are applicable to a specific discrete computing workload to thereby enable the virtual machine to simultaneously belong to multiple virtual networks using the single NIC. The network containers supported by the NIC can be associated with a single tenant to enable additional flexibility such quickly switching between virtual networks and support pre-provisioning of additional computing resources with associated networking policies for rapid deployment. The network containers can also be respectively associated with different tenants so that the single NIC can support multi-tenant services on the same virtual machine.Type: ApplicationFiled: April 27, 2021Publication date: December 16, 2021Inventors: Abhishek SHUKLA, Abhishek Ellore SREENATH, Neha AGGARWAL, Naveen PRABHAT, Nisheeth SRIVASTAVA, Xinyan ZAN, Ashish BHARGAVA, Parag SHARMA, Rishabh TEWARI
-
Publication number: 20210306313Abstract: The disclosed system implements techniques to secure communications for injecting a workload (e.g., a container) into a virtual network hosted by a cloud-based platform. Based on a delegation instruction received from a tenant, a virtual network of the tenant can connect to and execute a workload via a virtual machine that is part of a virtual network that belongs to a resource provider. To secure calls and authorize access to the tenant's virtual network, authentication information provided with a call from the virtual network of the resource provider may need to match authorization information made available via a publication service of the cloud-based platform. Additionally or alternatively, an identifier of a NIC used to make a call may need to correspond to a registered name of the resource provider for the call to be authorized. These checks provide increased security by preventing unauthorized calls to the tenant's virtual network.Type: ApplicationFiled: June 10, 2021Publication date: September 30, 2021Inventors: Abhijeet Kumar, Aanand RAMACHANDRAN, Jayesh KUMARAN, David Michael BRUMLEY, Rishabh TEWARI, Nisheeth SRIVASTAVA, Sushant SHARMA, Deepak BANSAL, Abhishek Ellore SREENATH, Parag SHARMA, Abhishek SHUKLA, Avijit GUPTA
-
Patent number: 11128490Abstract: Systems and methods for enabling access to dedicated resources in a virtual network using top of rack switches are disclosed. A method includes a virtual filtering platform encapsulating at least one packet, received from a virtual machine, to generate at least one encapsulated packet comprising a virtual network identifier (VNI). The method further includes a TOR switch: (1) receiving the at least one encapsulated packet and decapsulating the at least one encapsulated packet to create at least one decapsulated packet, (2) using the VNI to identify a virtual routing and forwarding artifact to determine a virtual local area network interface associated with the dedicated hardware portion, and (3) transmitting the at least one decapsulated packet to the dedicated hardware portion based on at least one policy provided by a controller, where the at least one policy comprises information related to a customer of the service provider.Type: GrantFiled: July 15, 2019Date of Patent: September 21, 2021Assignee: Microsoft Technology Licensing, LLCInventors: Neeraj Motwani, Rishabh Tewari, Pranjal Shrivastava, Deepak Bansal, Vaibhav Kumar, Nisheeth Srivastava, Abhishek Shukla, Rangaprasad Narasimhan, Vinayak Uppunda Padiyar, James Boerner, Avijit Gupta
-
Patent number: 11102079Abstract: Virtual networks located in different regions of cloud provider are peered using unique regional identifiers for the virtual networks. The regional identifiers and other information are pushed down a network management stack to implement the peering.Type: GrantFiled: April 17, 2018Date of Patent: August 24, 2021Assignee: Microsoft Technology Licensing, LLCInventors: Anavi Arun Nahar, David M. Brumley, Harish Kumar Chandrappa, Neeraj Motwani, Nisheeth Srivastava, Rishabh Tewari, Vaibhav Kumar, Vishal Taneja, Vladimir Serov, Xinyan Zan, Deepak Bansal, Narayan Annamalai, Milan Dasgupta
-
Publication number: 20210240514Abstract: The disclosed technology is generally directed to virtual machines. In one example of the technology, a network change from a first virtual network to a second virtual network is reconfigured for a first virtual machine that is executing on a first virtual machine host. The reconfiguring includes the following. In the first virtual machine host, a mapping change from the first virtual network to the second virtual network is configured by reprogramming drivers in the first virtual machine host for route mapping for the second virtual network. A Dynamic Host Configuration Protocol (DHCP) retrigger is caused without rebooting the first virtual machine. A configuration file is provided to the first virtual machine. The configuration file includes user-specific networking settings. The first virtual machine is reconfigured in accordance with the user-specific networking settings.Type: ApplicationFiled: April 19, 2021Publication date: August 5, 2021Inventors: Sushant Pramod REWASKAR, Md. Daud Hossain HOWLADER, Ashish BHARGAVA, Nisheeth SRIVASTAVA, Naveen PRABHAT, Jayesh KUMARAN, Xinyan ZAN, Abhishek SHUKLA, Rishabh TEWARI
-
Patent number: 11055125Abstract: The disclosed technology is generally directed to virtual machines. In one example of the technology, a network change from a first virtual network to a second virtual network is reconfigured for a first virtual machine that is executing on a first virtual machine host. The reconfiguring includes the following. In the first virtual machine host, a mapping change from the first virtual network to the second virtual network is configured by reprogramming drivers in the first virtual machine host for route mapping for the second virtual network. A Dynamic Host Configuration Protocol (DHCP) retrigger is caused without rebooting the first virtual machine. A configuration file is provided to the first virtual machine. The configuration file includes user-specific networking settings. The first virtual machine is reconfigured in accordance with the user-specific networking settings.Type: GrantFiled: January 14, 2018Date of Patent: July 6, 2021Assignee: Microsoft Technology Licensing, LLCInventors: Sushant Pramod Rewaskar, Md. Daud Hossain Howlader, Ashish Bhargava, Nisheeth Srivastava, Naveen Prabhat, Jayesh Kumaran, Xinyan Zan, Abhishek Shukla, Rishabh Tewari
-
Patent number: 11038866Abstract: The disclosed system implements techniques to secure communications for injecting a workload (e.g., a container) into a virtual network hosted by a cloud-based platform. Based on a delegation instruction received from a tenant, a virtual network of the tenant can connect to and execute a workload via a virtual machine that is part of a virtual network that belongs to a resource provider. To secure calls and authorize access to the tenant's virtual network, authentication information provided in association with a call from the virtual network of the resource provider may need to match authorization information made available via a publication service of the cloud-based platform. Moreover, an identifier of a NIC used to make a call may need to correspond to a registered name of the resource provider for the call to be authorized. These checks provide increased security by preventing unauthorized calls from accessing the tenant's virtual network.Type: GrantFiled: December 27, 2018Date of Patent: June 15, 2021Assignee: Microsoft Technology Licensing, LLCInventors: Abhijeet Kumar, Aanand Ramachandran, Jayesh Kumaran, David Michael Brumley, Rishabh Tewari, Nisheeth Srivastava, Sushant Sharma, Deepak Bansal, Abhishek Ellore Sreenath, Parag Sharma, Abhishek Shukla, Avijit Gupta
-
Patent number: 10996972Abstract: A virtual network interface controller (NIC) associated with a virtual machine in a cloud computing network is configured to support one or more network containers that encapsulate networking configuration data and policies that are applicable to a specific discrete computing workload to thereby enable the virtual machine to simultaneously belong to multiple virtual networks using the single NIC. The network containers supported by the NIC can be associated with a single tenant to enable additional flexibility such quickly switching between virtual networks and support pre-provisioning of additional computing resources with associated networking policies for rapid deployment. The network containers can also be respectively associated with different tenants so that the single NIC can support multi-tenant services on the same virtual machine.Type: GrantFiled: September 25, 2018Date of Patent: May 4, 2021Assignee: Microsoft Technology Licensing, LLCInventors: Abhishek Shukla, Abhishek Ellore Sreenath, Neha Aggarwal, Naveen Prabhat, Nisheeth Srivastava, Xinyan Zan, Ashish Bhargava, Parag Sharma, Rishabh Tewari
-
Patent number: 10866825Abstract: The disclosed technology is generally directed to virtual machines. In one example of the technology, generic virtual machine artifacts are created. The generic virtual machine artifacts include at least one generic compute artifact and at least one generic network artifact. A first virtual machine is composed and booted with the generic virtual machine artifacts. The first virtual machine is caused to enter a state in which the first virtual machine is polling for a configuration with user-specific compute settings, user-specific networking settings, and user-specific storage settings.Type: GrantFiled: January 14, 2018Date of Patent: December 15, 2020Assignee: Microsoft Technology Licensing, LLCInventors: Sushant Pramod Rewaskar, Chandramouleswaran Ravichandran, Md. Daud Hossain Howlader, Ashish Bhargava, Nisheeth Srivastava, Naveen Prabhat, Jayesh Kumaran, Xinyan Zan
-
Publication number: 20200344089Abstract: Systems and methods for enabling access to dedicated resources in a virtual network using top of rack switches are disclosed. A method includes a virtual filtering platform encapsulating at least one packet, received from a virtual machine, to generate at least one encapsulated packet comprising a virtual network identifier (VNI). The method further includes a TOR switch: (1) receiving the at least one encapsulated packet and decapsulating the at least one encapsulated packet to create at least one decapsulated packet, (2) using the VNI to identify a virtual routing and forwarding artifact to determine a virtual local area network interface associated with the dedicated hardware portion, and (3) transmitting the at least one decapsulated packet to the dedicated hardware portion based on at least one policy provided by a controller, where the at least one policy comprises information related to a customer of the service provider.Type: ApplicationFiled: July 15, 2019Publication date: October 29, 2020Inventors: Neeraj Motwani, Rishabh Tewari, Pranjal Shrivastava, Deepak Bansal, Vaibhav Kumar, Nisheeth Srivastava, Abhishek Shukla, Rangaprasad Narasimhan, Vinayak Uppunda Padiyar, James Boerner, Avijit Gupta