Patent · US Active

Protecting workloads in Kubernetes

US11176245B2 · kind B2 · utility

3Cited by

0References

20Claims

0Family size

Assignee

International Business Machines Corporation · US

Inventors

Angel Nunez Mencias · Stuttgart, DE
Peter Morjan · Hessenhöfe, DE
Dirk Herrendoerfer · Sindelfingen, DE
Preethi Polepalli Yeshwanth · Alpharetta, US

Key dates

Filing date	Sep 30, 2019
Grant date	Nov 16, 2021
Priority date	—
Expiry date	Jun 18, 2040

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/033
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Aspects of the invention include obtaining, via a processor, an original docker image from a customer, encrypting a disk image using content from the original docker image and encrypting a bootloader. A re-packaged image is created using the encrypted disk image and the secure encrypted bootloader. The re-packaged image is deployed by inserting the re-package image into a pod container and by means of using a mutating webhook, granting elevated privileges to said container and creating a secured Kubernetes pod for protecting workloads, wherein the secured Kubernetes pod has at least one virtual machine containing the pod container.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.