US 12,476,823 B2
System and method for validating a signature of a virtual workload image in runtime
Amir Lande Blau, Tel Aviv (IL); Roy Reznik, Tel Aviv (IL); and Bar Magnezi, Tel Aviv (IL)
Assigned to Wiz, Inc., New York, NY (US)
Filed by Wiz, Inc., New York, NY (US)
Filed on Jun. 12, 2023, as Appl. No. 18/333,097.
Prior Publication US 2024/0414005 A1, Dec. 12, 2024
Int. Cl. H04L 9/40 (2022.01); G06F 8/61 (2018.01); H04L 9/32 (2006.01)
CPC H04L 9/3247 (2013.01) [G06F 8/63 (2013.01)] 19 Claims
OG exemplary drawing
 
1. A method for deploying signed software images in a computing environment, comprising:
selecting a signed software image for deployment in a computing environment, the software image signed utilizing a private cryptographic key of an asymmetrical cryptography scheme;
accessing a public cryptographic key corresponding to the private cryptographic key;
configuring an admission controller of a software container cluster deployed in the computing environment to verify the signed software image utilizing the public cryptographic key;
deploying the signed software image in the software container cluster in response to verifying the signed software image; and
denying deployment of the signed software image, in response to determining that the signed software image is signed with a key which is not the private cryptographic key.