vSAN Data-in-Transit Encryption
GPTKB entity
Statements (23)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
crypt
|
| gptkbp:appliesTo |
all traffic between vSAN nodes
|
| gptkbp:canBe |
vSAN stretched clusters
|
| gptkbp:canBeEnabledWith |
gptkb:vSphere_Web_Client
|
| gptkbp:compatibleWith |
gptkb:FIPS_140-2
gptkb:vSAN_Data-at-Rest_Encryption self-encrypting drives partial cluster enablement |
| gptkbp:doesNotEncrypt |
data at rest
|
| gptkbp:enabledAt |
cluster level
|
| gptkbp:encryptionScope |
network traffic between vSAN hosts
|
| https://www.w3.org/2000/01/rdf-schema#label |
vSAN Data-in-Transit Encryption
|
| gptkbp:introducedIn |
gptkb:vSAN_6.6
|
| gptkbp:key |
gptkb:vSphere_Native_Key_Provider
gptkb:external_Key_Management_Server_(KMS) |
| gptkbp:protectedBy |
man-in-the-middle attacks
packet sniffing |
| gptkbp:purpose |
protect data while it is being transferred between hosts
|
| gptkbp:requires |
gptkb:vSAN_Enterprise_license
|
| gptkbp:supportsAlgorithm |
gptkb:AES-256-GCM
|
| gptkbp:usedIn |
gptkb:VMware_vSAN
|
| gptkbp:bfsParent |
gptkb:vSAN_Data-at-Rest_Encryption
|
| gptkbp:bfsLayer |
8
|