“As a Product Line Manager, I have worked with Keyur on many occasions to drive our key routing technology roadmaps forward. Keyur has extreme technical depth in his technology areas (focusing on BGP) and has excellent communications skills. He has a strong ability to tailor his discussions and presentations to the appropriate level as needed by the target audience. Not only can he explain in-depth details to experts, he can also very effectively explain key concepts and technology applications to the novice. Keyur is very easy to work with and actively asks for input on how things can be done better. He has earned the respect of his engineering and product management peers. Keyur is one of the brightest and most dependable engineers I have worked with.”
Activity
-
Announcing a key milestone for Arrcus! We are excited to share that Arrcus, Inc. has secured a significant new investment of $30 million from…
Announcing a key milestone for Arrcus! We are excited to share that Arrcus, Inc. has secured a significant new investment of $30 million from…
Liked by Keyur Patel
-
We had a great start At IETF120 in Vacouver. Dhruv Dhody, Weiqiang Cheng and I hosted our very first SRV6ops working group meeting. Thanks to Luay…
We had a great start At IETF120 in Vacouver. Dhruv Dhody, Weiqiang Cheng and I hosted our very first SRV6ops working group meeting. Thanks to Luay…
Liked by Keyur Patel
-
Meet Biamp Parlé—the plug-and-play all-in-one conferencing bar. Beamtracking™ audio and 4K video give you the most premium conferencing experience.
Meet Biamp Parlé—the plug-and-play all-in-one conferencing bar. Beamtracking™ audio and 4K video give you the most premium conferencing experience.
Liked by Keyur Patel
Publications
-
Automatic Route Target Filtering for legacy PEs
draft-ietf-idr-legacy-rtc-05
-
BGP Extensions for BIER
IETF
Bit Index Explicit Replication (BIER) is a new multicast forwarding
architecture which doesn't require an explicit tree-building protocol
and doesn't require intermediate routers to maintain any multicast
state. BIER is applicable in a multi-tenant data center network
environment for efficient delivery of Broadcast, Unknown-unicast and
Multicast (BUM) traffic while eliminating the need for maintaining a
huge amount of multicast state in the underlay. This…Bit Index Explicit Replication (BIER) is a new multicast forwarding
architecture which doesn't require an explicit tree-building protocol
and doesn't require intermediate routers to maintain any multicast
state. BIER is applicable in a multi-tenant data center network
environment for efficient delivery of Broadcast, Unknown-unicast and
Multicast (BUM) traffic while eliminating the need for maintaining a
huge amount of multicast state in the underlay. This document
describes BGP extensions for advertising the BIER-specific
information. These extensions are applicable in those multi-tenant
data centers where BGP instead of IGP is deployed as an underlay for
network reachability advertisement. These extensions may also be
applicable in other scenarios.Other authorsSee publication -
draft-rp-l2vpn-evpn-usage-01
IETF Draft
This document discusses the usage and applicability of BGP MPLS based
Ethernet VPN (E-VPN) in a simple and fairly common deployment
scenario. The different E-VPN procedures will be explained on the
example scenario, analyzing the benefits and trade-offs of each
option. Along with [E-VPN], this document is intended to provide a
simplified guide for the deployment of E-VPN in Service Provider
networks.Other authorsSee publication -
draft-rp-l2vpn-evpn-usage-02
IETF Draft
This document discusses the usage and applicability of BGP MPLS based
Ethernet VPN (E-VPN) in a simple and fairly common deployment
scenario. The different E-VPN procedures will be explained on the
example scenario, analyzing the benefits and trade-offs of each
option. Along with [E-VPN], this document is intended to provide a
simplified guide for the deployment of E-VPN in Service Provider
networks.Other authorsSee publication -
Segment Routing Prefix SID extensions for BGP
draft-keyupate-idr-bgp-prefix-sid-02
Patents
-
Restarting Network Reachability Protocol Sessions Based on Transport Layer Authentication
Issued US Patent No.9,300,642
Network nodes can use authentication facilities in transport layer communication protocols, such as Transmission Control Protocol Authentication Option (“TCP-AO”), in a data communications network to authenticate each other. TCP-AO addresses network security and key rollover methods.
TCP-AO provides security measures for a variety of TCP applications. For example, TCP-AO may be executed by the peering nodes that implement a network reachability protocol such as Border Gateway…Network nodes can use authentication facilities in transport layer communication protocols, such as Transmission Control Protocol Authentication Option (“TCP-AO”), in a data communications network to authenticate each other. TCP-AO addresses network security and key rollover methods.
TCP-AO provides security measures for a variety of TCP applications. For example, TCP-AO may be executed by the peering nodes that implement a network reachability protocol such as Border Gateway Protocol (“BGP”), TCP applications such as a Label Distribution Protocol (“LDP”), a Protocol Independent Multicast (“PIM”)-over-TCP, and Multicast Source Discovery Protocol (“MSDP”)-over-TCP, etc.
In a network using TCP-AO, when a BGP peer router suffers a cold reboot after an unexpected restart, the time period for the BGP peers to recover from the reboot and to set up new BGP sessions with the rebooted peer may require considerable time. -
Performing a defensive procedure in response to certain path advertisements
Issued US 8640236
Other inventors -
-
Providing reachability information in a routing domain of an external destination address in a data communications network
Issued US US7957306
An apparatus for providing reachability in a routing domain of a data communications network having as components nodes and links therebetween for a routing domain external destination address is provided. The apparatus is arranged to advertise destination address reachability internally to nodes in the routing domain and associate a reachability category with the internal advertisement of the destination address reachability.
Other inventorsSee patent -
Constructing a repair path in the event of non-availability of a routing domain
Issued US US8374092
In one embodiment, an apparatus and method are described for constructing a repair path in the event of non-availability of a routing domain component of a routing domain comprising, as components, links and nodes. The apparatus is arranged to receive respective network repair addresses from each of the far-side and near-side advertising node for use in the event of non-availability of a routing domain component between the advertising node. The apparatus is further arranged to advertise the…
In one embodiment, an apparatus and method are described for constructing a repair path in the event of non-availability of a routing domain component of a routing domain comprising, as components, links and nodes. The apparatus is arranged to receive respective network repair addresses from each of the far-side and near-side advertising node for use in the event of non-availability of a routing domain component between the advertising node. The apparatus is further arranged to advertise the near-side advertising node network repair address to one or more far-side nodes via a path external to the routing domain.
Other inventorsSee patent -
Constructing a repair path in the event of non-availability of a routing domain
Issued US US7697416
In one embodiment, an apparatus and method are described for constructing a repair path in the event of non-availability of a routing domain component of a routing domain comprising, as components, links and nodes. The apparatus is arranged to receive respective network repair addresses from each of the far-side and near-side advertising node for use in the event of non-availability of a routing domain component between the advertising node. The apparatus is further arranged to advertise the…
In one embodiment, an apparatus and method are described for constructing a repair path in the event of non-availability of a routing domain component of a routing domain comprising, as components, links and nodes. The apparatus is arranged to receive respective network repair addresses from each of the far-side and near-side advertising node for use in the event of non-availability of a routing domain component between the advertising node. The apparatus is further arranged to advertise the near-side advertising node network repair address to one or more far-side nodes via a path external to the routing domain.
Other inventorsSee patent -
Soft notification messaging for a routing protocol
Issued US 7633874
A soft notification technique isolates address family application based errors or events occurring within a routing protocol, such as the Border Gateway Protocol (BGP), used to exchange routing information between a router and its peer router over a BGP session operating on a reliable transport.
-
Approaches for switching transport protocol connection keys
Issued US 7,545,810
Approaches are disclosed for switching transport protocol connection keys.
Other inventorsSee patent -
Constructing a repair path in the event of failure of an inter-routing domain system link
Issued US 20080219153
An apparatus and method as described for constructing a repair path for use in the event of failure of an inter-routing domain connection between respective components in first and second routing domains of a data communications network. The apparatus is arranged to assign a propagatable repair address for use in the event of failure of the inter-routing domain connection and to propagate the repair address via data communications network components other than the inter-routing domain…
An apparatus and method as described for constructing a repair path for use in the event of failure of an inter-routing domain connection between respective components in first and second routing domains of a data communications network. The apparatus is arranged to assign a propagatable repair address for use in the event of failure of the inter-routing domain connection and to propagate the repair address via data communications network components other than the inter-routing domain connection.
-
TYING DATA PLANE PATHS TO A SECURE CONTROL PLANE
Filed US 20150207729
In one embodiment, a router located at an exit edge of an autonomous system (AS) receives a data packet in a data plane, and determines a destination of the data packet and an associated AS-path information to the destination. The router may then insert the AS-path information into the data packet, and forwards the data packet with the AS-path information toward the destination, such that a receiving device in a destination AS can validate whether the data packet was routed through a path that…
In one embodiment, a router located at an exit edge of an autonomous system (AS) receives a data packet in a data plane, and determines a destination of the data packet and an associated AS-path information to the destination. The router may then insert the AS-path information into the data packet, and forwards the data packet with the AS-path information toward the destination, such that a receiving device in a destination AS can validate whether the data packet was routed through a path that was secure from a control plane perspective based on a collection of one or more insertions of AS-path information.
Other inventorsSee patent -
VERIFYING DATA PLANE PATHS BASED ON A VALIDATED SECURE CONTROL PLANE
Filed US 20150207728
In one embodiment, a plurality of packets is sent from an origin device along a communication path toward a destination device. Each packet includes a lifespan indicator which is incrementally increased for each subsequently sent packet. A plurality of response messages are received at the origin device from a plurality of intermediate devices, respectively. A plurality of secure path objects included in the plurality of response messages, respectively, is determined. Additionally, the…
In one embodiment, a plurality of packets is sent from an origin device along a communication path toward a destination device. Each packet includes a lifespan indicator which is incrementally increased for each subsequently sent packet. A plurality of response messages are received at the origin device from a plurality of intermediate devices, respectively. A plurality of secure path objects included in the plurality of response messages, respectively, is determined. Additionally, the plurality of secure path objects are validated based on validation information accessible by the origin device. Validation results of the plurality of secure path objects are checked to determine whether a packet that is sent from the origin device and received by the destination device travels along a particular communication path as dictated by control plane information.
Other inventorsSee patent -
EFFICIENT GENERATION OF VPN-BASED BGP UPDATES
Filed US 20110149980
EFFICIENT GENERATION OF VPN-BASED BGP UPDATES
Improves IOS BGP PE-CE convergence upto 300% (in 1/3rd of the original time, for a scale of 4000 VRFs, 8000 PE-CE interfaces and 2.3M routes) on Cisco IOS ASR1K, making it the fastest implementation in the industry at that time.
Cisco Serial No.: 12/643,036Other inventorsSee patent -
Methods and apparatus for implementing VPN services
US 7,668,178
Implementation of a VPN service such as a VPLS (Virtual Private Local area network Service) is performed utilizing a two-stage process. A first stage of the two-stage process involves providing notification of whether a PE (Provider Edge) router in a label-switching network has VPLS capability. Notification can include broadcasting a message from a PE router to remote PE routers in the label-switching network to indicate whether the broadcasting PE router is VPLS enabled. A second stage of the…
Implementation of a VPN service such as a VPLS (Virtual Private Local area network Service) is performed utilizing a two-stage process. A first stage of the two-stage process involves providing notification of whether a PE (Provider Edge) router in a label-switching network has VPLS capability. Notification can include broadcasting a message from a PE router to remote PE routers in the label-switching network to indicate whether the broadcasting PE router is VPLS enabled. A second stage of the two-stage process involves, based on receiving a notification that a PE router is VPLS enabled, generating a query message to discover a set of VPLS instances to which the broadcasting PE router belongs. In this way, a given PE router generating the query message can identify other PE routers in the label-switching network associated with the same VPLS for purposes of setting up the VPLS in the label-switching network.
Other inventorsSee patent -
Methods and apparatus for implementing VPN services
US 7,668,178
Implementation of a VPN service such as a VPLS (Virtual Private Local area network Service) is performed utilizing a two-stage process. A first stage of the two-stage process involves providing notification of whether a PE (Provider Edge) router in a label-switching network has VPLS capability. Notification can include broadcasting a message from a PE router to remote PE routers in the label-switching network to indicate whether the broadcasting PE router is VPLS enabled. A second stage of the…
Implementation of a VPN service such as a VPLS (Virtual Private Local area network Service) is performed utilizing a two-stage process. A first stage of the two-stage process involves providing notification of whether a PE (Provider Edge) router in a label-switching network has VPLS capability. Notification can include broadcasting a message from a PE router to remote PE routers in the label-switching network to indicate whether the broadcasting PE router is VPLS enabled. A second stage of the two-stage process involves, based on receiving a notification that a PE router is VPLS enabled, generating a query message to discover a set of VPLS instances to which the broadcasting PE router belongs. In this way, a given PE router generating the query message can identify other PE routers in the label-switching network associated with the same VPLS for purposes of setting up the VPLS in the label-switching network.
Other inventorsSee patent
Recommendations received
2 people have recommended Keyur
Join now to viewMore activity by Keyur
-
It was a pleasure talking about my work on "Fast, Flexible, and Intelligent Next-Generation Networks" at the Lahore University of Management…
It was a pleasure talking about my work on "Fast, Flexible, and Intelligent Next-Generation Networks" at the Lahore University of Management…
Liked by Keyur Patel
-
I am thrilled to share that my 50th patent has been issued by the US Patent Office! This patent covers a device that calculates a network…
I am thrilled to share that my 50th patent has been issued by the US Patent Office! This patent covers a device that calculates a network…
Liked by Keyur Patel
-
Arrcus, Inc. Continues Networking Innovation Fueled by New $30M Investment 🚀 Arrcus, a prominent company in hyperscale #networking software known…
Arrcus, Inc. Continues Networking Innovation Fueled by New $30M Investment 🚀 Arrcus, a prominent company in hyperscale #networking software known…
Liked by Keyur Patel
-
📣 𝗔𝗥𝗥𝗖𝗨𝗦 𝗜𝗡 𝗧𝗛𝗘 𝗡𝗘𝗪𝗦! Excited to be featured on 𝗧𝗵𝗲 𝗗𝗲𝗲𝗽 𝗘𝗱𝗴𝗲 𝗣𝗼𝗱𝗰𝗮𝘀𝘁with Ray Mota PhD featuring Shekar Ayyar, CEO…
📣 𝗔𝗥𝗥𝗖𝗨𝗦 𝗜𝗡 𝗧𝗛𝗘 𝗡𝗘𝗪𝗦! Excited to be featured on 𝗧𝗵𝗲 𝗗𝗲𝗲𝗽 𝗘𝗱𝗴𝗲 𝗣𝗼𝗱𝗰𝗮𝘀𝘁with Ray Mota PhD featuring Shekar Ayyar, CEO…
Liked by Keyur Patel
Other similar profiles
Explore collaborative articles
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
Explore MoreOthers named Keyur Patel in United States
-
Keyur Patel
-
Keyur Patel
-
Keyur Patel
Associate Director for Flight Projects and Mission Success at NASA Jet Propulsion Laboratory
-
Keyur Patel
-
Keyur Patel
372 others named Keyur Patel in United States are on LinkedIn
See others named Keyur Patel