Confidential Computing is the protection of data in use by performing computation in a hardware-based, attested Trusted Execution Environment.
A Trusted Execution Environment (TEE) is an environment that provides a level of assurance of the following three properties: data integrity, data confidentiality, and code integrity.
TEEs may have additional attributes such as code confidentiality, programmability, recoverability, and attestability.
Confidential Computing aims to reduce the ability for the owner/operator/pwner of a platform to access data and code inside TEEs sufficiently such that this path is not an economically or logically viable attack during execution.
A novel container runtime, aka confidential container, for cloud-native confidential computing and enclave runtime ecosystem.
SGX-ready Enclaive Docker Image for Nginx
Protecting Accelerator Execution with Arm Confidential Computing Architecture (USENIX Security 2024)
Solution to harden TLS security by storing private keys and delegating operations to the Trused Execution Environment
A cloud-oriented middlebox for network confidential computing
Port of Facebook's LLaMA model in C/C++ (running in SGX enclave)