Confidential Containers is an open source community working to leverage Trusted Execution Environments to protect containers and data and to deliver cloud native confidential computing.
We have a new release every 6 weeks! See Release Notes or Quickstart Guide
Our key considerations are:
- Allow cloud native application owners to enforce application security requirements
- Transparent deployment of unmodified containers
- Support for multiple TEE and hardware platforms
- A trust model which separates Cloud Service Providers (CSPs) from guest applications
- Least privilege principles for the Kubernetes cluster administration capabilities which impact delivering Confidential Computing for guest applications or data inside the TEE
- Confidential Containers Helm Charts : Helm charts to deploy confidential containers runtime (and required configs) on a Kubernetes cluster
- Project Overview
- Project Architecture
- Our Roadmap
- Our Release Content Planning
- Alignment with other Projects
We welcome contributions from the community! Please see our Contributing Guidelines for details on how to get started.
