Gateway must provide transport security

[sdpeters]

This is not listed in the initial gateway project requirements

The gateway must be able to provide transport security. That includes both the secure authentication of hosts to the gateway, and the gateway to the hosts. It also requires the NVMe-oF traffic to be encrypted in flight. For NVMe/TCP this probably comes from the NVMe TLS support. For NVMe/RoCE this requires a "cookbook" for users to configure RDMA encryption so the gateway and hosts can recognize and use it.

The gateway will of course deny access to hosts when authentication fails. For transport security to be meaningful this probably requires the ability to configure the gateway to deny access to hosts when the gateway cannot confirm the traffic is encrypted (e.g. the RDMA traffic came over an encrypted tunnel or overlay). For some transports this may not happen automatically in the lower layers of the stack.