📃
Confidential Computing 101
HomeTechnologyTry CC!
  • Welcome
  • Confidential Computing
    • What is Confidential Computing
    • What problems Confidential Computing solves
      • Bare Metal
      • Docker
      • Kubernetes
      • Knative
    • Why Confidential Computing
    • How Confidential Computing works
      • Memory Encryption
      • Workload Attestation
      • Confidential Boot
      • Sealing / Binding
      • Secret Provisioning
    • Technology Overview
    • Cloud Service Providers
  • Technology in depth
    • Intel SGX
      • Getting Started
        • Bare Metal Server Installation
        • Enclave Development Environment
        • Intel SGX SDK Setup
      • Technology
        • 🎭Features
        • 💂Threat Model
        • 🆚Versions
        • 🟦Concepts
          • 🏦Memory Encryption
          • 👮Local and Remote Attestation
          • 🖼️DCAP-Attestation Framework
          • 🔑Secret Key Provisioning
      • enclaive Development Kit
        • 🏢Architecture
        • 🌪️Workflow
        • 🌍Tutorials
          • Azure DCdsv3, DCsv2, or DCsv3 Setup
          • Redis in cK8s
          • MongoDB in cK8s
          • K8s + HashiCorp Vault on Azure DCsv3
      • Vault Remote Attestation Plug-In
        • 🏃‍♂️Initialization
        • 👮Attestation
        • ⚙️Configuration
    • Intel TDX
      • Getting Started
        • Azure
        • AWS
        • GCP
      • Technology
        • History
          • VT
          • TME/MKTME
          • SGX
        • Features
        • Threat Model
        • Concepts
          • Architecture
            • TDX Module
          • Memory Encryption
            • Confidentiality and Integrity
            • Keys and Key Management
          • TD Partitioning
          • DCAP-Attestation
            • Overview
            • Platform Registration
            • Attestation Report
    • AMD SEV
      • Getting Started
        • Azure
        • AWS
        • GCP
      • Technology
        • History
        • Threat Model
        • SME Concepts
          • Use Models
        • SEV-SNP Concepts
          • Features
            • Integrity Threats
            • Reverse Map Table
            • Page Validation
            • Page States
            • Virtual Machine Privilege Levels
            • Interrupt/Exception Protection
            • Trusted Platform Information
            • TCB Versioning
            • VM Launch & Attestation
            • VM Migration
            • Side Channels
          • Use Cases
          • Architecture
            • Encrypted Memory
            • Key Management
          • Software Implications
    • ARM CC
      • Technology
        • Introduction
        • Threat Model
        • Design
        • Comparison
    • Attestation Methods
      • Raw Attestation
      • Raw Attestation with Secure-Boot
      • Raw Attestation with a vTPM
        • AMD Secure VM Service Module and vTPMs
      • Raw Attestation with paravirtualized TPM
  • Resources
    • Youtube
    • Github
    • Products
Powered by GitBook
On this page
  • Confidential Computing
  • By Technology
  • Open Source Tooling

Was this helpful?

Welcome

This documentation focuses on Confidential Computing using hardware-graded security technologies.

Last updated 8 months ago

Was this helpful?

This documentation is a work in progress and subject to updates and revisions. Keep an eye out for version changes and new additions to ensure you have the latest information.

This documentation assumes that you have a foundational understanding of computer architecture, information security, cryptography and familiarity with basic cloud computing concepts. If you are new to cloud computing or lack the necessary knowledge, we recommend exploring introductory tutorials on Virtual Machines, , and before proceeding.

In an era defined by escalating concerns over data privacy and security breaches, the demand for innovative solutions to safeguard sensitive information has never been more pressing. Enter confidential computing, a paradigm-shifting approach that promises to revolutionize how we handle and process data in the digital age. By enabling computations on encrypted data without compromising confidentiality, confidential computing opens up a realm of possibilities for industries ranging from finance to healthcare, where preserving the privacy and integrity of data is paramount. In this technical documentation, we delve into the intricacies of confidential computing, exploring its principles, applications, and the transformative impact it holds for the future of secure data processing in the cloud.

Confidential Computing

By Technology

Open Source Tooling

RISC-V AP-TEE

NVIDIA CC

(work in progress)

Docker
Kubernetes

What is Confidential Computing

What Problems solves Confidential Computing

Why Confidential Computing

How Confidential Computing works

Technologies

Cloud Service Provider

AMD SEV SNP

Intel TDX

Intel SGX

ARM CC

enclaive Development Kit
Vault Remote Attestation Plug-In