Welcome to documentation repository for Confidential Containers

Confidential Containers is an open source community working to leverage Trusted Execution Environments to protect containers and data and to deliver cloud native confidential computing.

Our key considerations are:

• Allow cloud native application owners to enforce application security requirements
• Transparent deployment of unmodified containers
• Support for multiple TEE and hardware platforms
• A trust model which separates Cloud Service Providers (CSPs) from guest applications
• Least privilege principles for the Kubernetes cluster administration capabilities which impact delivering Confidential Computing for guest applications or data inside the TEE

Further Detail

• Project Overview
• Project Architecture
• Our Roadmap
• Alignment with other Projects

Associated Repositories

• Kubernetes Operator for Confidential Computing : An operator to deploy confidential containers runtime (and required configs) on a Kubernetes cluster

License