Nitride

Manage identities of confidential VMs and k8s containers, define workload-based access control, secure access to secrets, and pave the way to confidential computing.

This documentation is a work in progress and subject to updates and revisions. Keep an eye out for version changes and new additions to ensure you have the latest information.

Nitride is a tool for workload identity management and the gateway to confidential computing. The goal of workload identity is to ensure that individual workload (such as a virtual machine, container, or serverless function) has its own unique identity, and access permissions are granted based on the principle of least privilege.

In today's complex cloud setups, managing access to a wide array of sensitive information is crucial. From database passwords to API keys for external services, keeping track of which workload accesses what data can be challenging, especially across various platforms. By harnessing the power of confidential computing, Nitride provides cryptographic proof of a workload's identity. Picture it like a TLS certificate for your workload, but issued by the processor itself acting as a trustful notary. Nitride enables the verification of workload identities and the implementation of detailed access controls for secrets stored in Key Management Services like Vault.