US 11,989,282 B2
Open-source container data management
Da Li Liu, Beijing (CN); Qi Feng Huo, Beijing (CN); Yuan Yuan Wang, Beijing (CN); Lei Li, Beijing (CN); and Yan Song Liu, Beijing (CN)
Assigned to International Business Machines Corporation, Armonk, NY (US)
Filed by International Business Machines Corporation, Armonk, NY (US)
Filed on Sep. 10, 2021, as Appl. No. 17/471,533.
Prior Publication US 2023/0082851 A1, Mar. 16, 2023
Int. Cl. G06F 21/53 (2013.01); G06F 9/455 (2018.01); G06F 21/57 (2013.01); G06F 21/60 (2013.01); H04L 9/30 (2006.01)
CPC G06F 21/53 (2013.01) [G06F 9/45558 (2013.01); G06F 21/57 (2013.01); G06F 21/602 (2013.01); H04L 9/30 (2013.01); G06F 2009/45562 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A system, said system comprising:
a memory; and
a processor in communication with said memory, said processor being configured to perform operations, said operations comprising:
generating a key pair;
encrypting a data credential with a public key to make a data credential secret;
storing said data credential secret in a cluster on a host;
deploying a workload on said cluster;
establishing an empty bundle in said host;
generating a pod trusted execution environment; and
decrypting, in said pod trusted execution environment, said data credential secret with a private key to generate decrypted data.