公开(公告)号：GB2603710B

公开(公告)日：2022-11-23

申请号：GB202205814

申请日：2020-09-04

Applicant: IBM

Inventor： ANGEL NUNEZ MENCIAS ,  PETER MORJAN ,  DIRK HERRENDOERFER ,  PREETHI POLEPALLI YESHWANTH

IPC: G06F21/53 ,  G06F21/62

Abstract: Aspects of the invention include obtaining, via a processor, an original docker image from a customer, encrypting a disk image using content from the original docker image and encrypting a bootloader. A re-packaged image is created using the encrypted disk image and the secure encrypted bootloader. The re-packaged image is deployed by inserting the re-package image into a pod container and by means of using a mutating webhook, granting elevated privileges to said container and creating a secured Kubernetes pod for protecting workloads, wherein the secured Kubernetes pod has at least one virtual machine containing the pod container.

公开(公告)号：GB2603710A

公开(公告)日：2022-08-10

申请号：GB202205814

申请日：2020-09-04

Applicant: IBM

Inventor： ANGEL NUNEZ MENCIAS ,  PETER MORJAN ,  DIRK HERRENDOERFER ,  PREETHI POLEPALLI YESHWANTH

IPC: G06F21/53

Abstract: Aspects of the invention include obtaining, via a processor, an original docker image from a customer, encrypting a disk image using content from the original docker image and encrypting a bootloader. A re-packaged image is created using the encrypted disk image and the secure encrypted bootloader. The re-packaged image is deployed by inserting the re-package image into a pod container and by means of using a mutating webhook, granting elevated privileges to said container and creating a secured Kubernetes pod for protecting workloads, wherein the secured Kubernetes pod has at least one virtual machine containing the pod container.