Explore a 45-minute conference presentation from the Storage Developer Conference 2022 that delves into scaling security solutions for NVMe over IP fabrics. Learn about fundamental security methods like DH-HMAC-CHAP authentication and TLS secure channels, while understanding their current scalability limitations in large fabric deployments. Discover how the Authentication Verification Entity mechanism offers a solution to simplify and scale security implementations effectively. Master key concepts including bidirectional authentication, opportunistic TLS, protocol diagrams, and symmetric protocols through detailed explanations by Dell expert Claudio DeSanti. Gain practical insights into host provisioning, key provisioning, and NVMe initial provisioning processes that make security deployment more manageable in NVMe over IP fabric environments.
Scaling NVMe Over IP Fabric Security - Making Authentication Simple and Deployable
Overview
Syllabus
Agenda
Security Functions
Bidirectional Authentication
opportunistic TLS
protocol diagram
provisioning problem
symmetric protocol
authentication verification entity
authentication protocol
key provisioning
host provisioning
example
Ideal Fabric Authentication Provision
NVMe Initial Provisioning
Summary
Questions
Taught by
SNIAVideo
