US 12,445,270 B2
On-demand formation of secure user domains
Dimitrios Syrivelis, Volos (GR); Paraskevas Bakopoulos, Ilion (GR); Ioannis (Giannis) Patronas, Piraeus (GR); and Elad Mentovich, Tel Aviv (IL)
Assigned to MELLANOX TECHNOLOGIES, LTD., (IL)
Filed by MELLANOX TECHNOLOGIES, LTD., Yokneam (IL)
Filed on Mar. 1, 2022, as Appl. No. 17/683,972.
Claims priority of application No. 20220100162 (GR), filed on Feb. 23, 2022.
Prior Publication US 2023/0269077 A1, Aug. 24, 2023
Int. Cl. H04L 9/40 (2022.01); H04L 9/08 (2006.01); H04L 9/32 (2006.01)
CPC H04L 9/0825 (2013.01) [H04L 9/0838 (2013.01); H04L 9/0852 (2013.01); H04L 9/3236 (2013.01)] 11 Claims
OG exemplary drawing
 
1. A data processing system, comprising:
an encryption orchestrator that enables a tenant in a plurality of tenants to deploy a confidentiality enclave specific to the tenant on computing resources shared among the plurality of tenants by:
receiving a request to create the confidentiality enclave for the tenant;
identifying a set of servers in a plurality of servers that include computing resources available to the tenant;
employing a Root of Trust (RoT) on a first server in the set of servers to exchange an encryption key with every other server in the set of servers;
updating data that associates a tenant identifier (ID) assigned to the tenant with the encryption key; and
making the updated data available for reference during an encrypted transmission of data initiated by the tenant.