This proposal provides a technique to dynamically encrypt traffic on a per-workload basis on a host from a per-workload virtual switch (vSwitch) to a smart Network Interface Card (NIC). Further, this proposal provides for the ability to utilize the same technique to encrypt traffic between hosts and micro services, thereby facilitating end‑to‑end encryption of workloads for containerized environments.
Creative Commons License
This work is licensed under a Creative Commons Attribution 4.0 License.
Mestery, Kyle; Wells, Ian; and Duraj, Grzegorz, "DYNAMIC, PER-TENANT ENCRYPTION USING SMART NETWORK INTERFACE CARDS", Technical Disclosure Commons, (January 20, 2020)