mirror of
https://github.com/confidential-containers/confidential-containers.git
synced 2025-10-21 23:48:29 +00:00
97102f53b8
Describe and explain the project architecture. Signed-off-by: Ariel Adam <aadam@redhat.com> Co-authored-by: Dan Middleton <dan.middleton@intel.com> Co-authored-by: Samuel Ortiz <sameo@rivosinc.com>
31 lines
1.4 KiB
Markdown
31 lines
1.4 KiB
Markdown
|
|
|
|
# Welcome to documentation repository for Confidential Containers
|
|
|
|
Confidential Containers is an open source community working to leverage
|
|
[Trusted Execution Environments](https://en.wikipedia.org/wiki/Trusted_execution_environment)
|
|
to protect containers and data and to deliver cloud native
|
|
confidential computing.
|
|
|
|
Our key considerations are:
|
|
- Allow cloud native application owners to enforce application security requirements
|
|
- Transparent deployment of unmodified containers
|
|
- Support for multiple TEE and hardware platforms
|
|
- A trust model which separates Cloud Service Providers (CSPs) from guest applications
|
|
- Least privilege principles for the Kubernetes cluster administration capabilities which impact
|
|
delivering Confidential Computing for guest applications or data inside the TEE
|
|
|
|
## Further Detail
|
|
|
|
[](https://asciinema.org/a/eGHhZdQY3uYnDalFAfuB7VYqF)
|
|
|
|
- [Project Overview](./overview.md)
|
|
- [Project Architecture](./architecture.md)
|
|
- [Our Roadmap](./roadmap.md)
|
|
- [Alignment with other Projects](alignment.md)
|
|
|
|
|
|
### Associated Repositories
|
|
- [Kubernetes Operator for Confidential Computing](https://github.com/confidential-containers/confidential-containers-operator)
|
|
: An operator to deploy confidential containers runtime (and required configs) on a Kubernetes cluster
|