公开(公告)号：US11792003B2

公开(公告)日：2023-10-17

申请号：US16950852

申请日：2020-11-17

Applicant: VMware, Inc.

Inventor： Haoran Zheng ,  Tao Xie ,  Wei Fang ,  Anil Chintalapati ,  Jing Liu

IPC: H04L9/14 ,  G06F9/54 ,  H04L9/32 ,  H04L101/622

CPC classification number: H04L9/14 ,  G06F9/545 ,  H04L9/32 ,  H04L2101/622

Abstract: Distributed storage system and method for transmitting storage-related messages between host computers in a distributed storage system uses a handshake operation of a first-type communication connection between a source data transport daemon of a source host computer and a target data transport daemon of a target host computer to derive a symmetric key at each of the source and target data transport daemons. The two symmetric keys are sent to a source data transport manager of the source host computer and to a target data transport manager of the target host computer. The source and target data transport managers then use the same symmetric keys to encrypt and decrypt storage-related messages that are transmitted from the source data transport manager to the target data transport manager through multiple second-type communication connections between the source and target data transport managers.

公开(公告)号：US11658820B2

公开(公告)日：2023-05-23

申请号：US17102363

申请日：2020-11-23

Applicant: VMware, Inc.

Inventor： Wei Fang ,  Haoran Zheng ,  Tao Xie ,  Yun Zhou ,  YangYang Zhang

IPC: H04L9/32 ,  H04L9/40

CPC classification number: H04L9/32 ,  H04L63/0428

Abstract: A distributed system, such as a distributed storage system in a virtualized computing environment and having storage nodes arranged in a cluster, is provided by management server with a transition period between non-encryption and encryption modes of operation. The transition period enables all of the nodes to complete a transition from the non-encryption mode of operation to the encryption mode of operation, without loss of data-in-transit (DIT). An auto-remediation feature is provided by the management server to the cluster, so as to fix inconsistent state(s) of one or more nodes in the cluster.

公开(公告)号：US20220103359A1

公开(公告)日：2022-03-31

申请号：US16950852

申请日：2020-11-17

Applicant: VMware, Inc.

Inventor： Haoran Zheng ,  Tao Xie ,  Wei Fang ,  Anil Chintalapati ,  Jing Liu

IPC: H04L9/14 ,  H04L9/32 ,  H04L29/12 ,  G06F9/54

Abstract: Distributed storage system and method for transmitting storage-related messages between host computers in a distributed storage system uses a handshake operation of a first-type communication connection between a source data transport daemon of a source host computer and a target data transport daemon of a target host computer to derive a symmetric key at each of the source and target data transport daemons. The two symmetric keys are sent to a source data transport manager of the source host computer and to a target data transport manager of the target host computer. The source and target data transport managers then use the same symmetric keys to encrypt and decrypt storage-related messages that are transmitted from the source data transport manager to the target data transport manager through multiple second-type communication connections between the source and target data transport managers.