> > Anyways, this is not really important right now. Just want to show > > that the current approach is not really optional (useless encrypt/decrypt which > wastes CPU power). > > at which stage? HTTPS <==> SSH <==> kvm So I think we encrypt traffic twice.