Releases: intel/confidential-computing-zoo
CCZoo Release v1.3
What’s New:
-
Extend TDX-based Confidential AI solution to support configurable attestation service as needed.
The solution now supports 2 types attestation service: Alibaba Cloud attestation service and Trustee attestation service.
This solution demonstrates how to build a confidential AI inference service within a confidential virtual machines (CVM) using a suite of open-source frameworks and large language models (LLMs). It further illustrates how to integrate the Intel TDX based security measurement and remote attestation capabilities into LLM inference service, thereby establishing robust security authentication and privacy protected workflows for the LLM service. This approach ensures that both the model and the user data are managed securely, maintaining their integrity and protecting against unauthorized access throughout the entire service lifecycle.
Solution Link: Englist Version, Chinese Version -
Update TDX Memory dump demo - TDX Confidential Computing with Encrypted Memory protection for Application/Data in Runtime.
This demo primarily shows the memory encryption protection provided by TDVM at runtime.
In traditional virtual machines, memory dump attacks are a serious concern. A privileged user—such as a hypervisor, host administrator, or an attacker who has broken privilege control—can use tools like virsh or gdb to access the full memory of a virtual machine. Since legacy VM memory is stored in plaintext, sensitive data can be easily extracted from the dump.
CCZoo Release v1.2
What’s New:
- Add 1 new TDX-based Confidential AI solution.
Description:
This solution demonstrates how to build a confidential AI inference service within a confidential virtual machines (CVM) using a suite of open-source frameworks and large language models (LLMs). It further illustrates how to integrate the Intel TDX based security measurement and remote attestation capabilities into LLM inference service, thereby establishing robust security authentication and privacy protected workflows for the LLM service. This approach ensures that both the model and the user data are managed securely, maintaining their integrity and protecting against unauthorized access throughout the entire service lifecycle.
Solution Link: Englist Version, Chinese Version
CCZoo Release v1.1
What’s New:
1. 2 New Solutions based on TDX Published, Ready for use.
-
Attested boot with encrypted TDVM OS image - Link
Introduction: This solution builds an E2E attested boot solution with encrypted Intel TDVM OS image to protect customized guest OS image booting in cloud environment, also it provides the remote attestation capability to guarantee the trust environment and retrieve the secret key with RA-TLS. -
Horizontal Federated Learning with TDX CoCo - Link
Introduction: This solution builds horizontal federated learning framework with TDX confidential container. It demonstrates a full chain data security with encrypted docker image deployment protecting runtime security, data at-rest security and communication with remote attestation.
- Updates of Previously Published Solutions
- Add TF Serving Cluster PPML support for - - Azure AKS and MAA
- Add document to introduce the deployment in Azure SGX instance
- Update source code to support the integration with Azure services (MAA & AKS)
- Deliver docker image for Azure cloud deployment
- Add TDX-TEE and Bazel support for gRPC RA-TLS
- Deliver TDX docker image for TDX Encrypted VFS
- New published documents
- TDX confidential container project introduction - Link
- Collected links of Intel TDX whitepapers
- Linux stack for Intel TDX
CCZoo Release v1.0
What’s New
3 solutions published in the main branch, ready for use.
- Horizontal Federated Learning with Intel TDX
- Encrypted virtual File System with TDX-RA
- Encrypted VFS and TDX-RA Enhanced TensorFlow Serving
Updates of Previously Published Solutions.
o Horizontal Federated Learning
Document updates
Add Azure Cloud Deployment Support
CCZoo Release v0.7
What’s New
-
2 solutions published in the main branch, ready for use.
o Machine binding key backup
o HTTPA(Hypertext Transfer Protocol Attestable) -
Updates of Previously-Published Solutions.
o Horizontal Federated Learning- Document updates.
- Upgrade Gramine to v1.3.1
o TensorFlow Serving Cluster PPML - Upgrade Gramine to v1.3.1
- Document updates
o Cross languages framework based on Gramine - Document updates
o PSI - Document updates
- Add Azure Cloud Deployment Support
CCZoo Release v0.6
What’s New
-
2 solutions published in main branch, ready for use.
-> Secure AI Inference & Training
o Secure Logistic Logical Regression Inference with HE and SGX- Link
->Incubating Component
o Librats - Link -
Updates of Previously-Published Solutions.
o Horizontal Federated Learning
Document updates.
Upgrade Gramine to v1.2
Add OpenAnolis Support
o TensorFlow Serving Cluster PPML
Upgrade Gramine to v1.2
Document updates
Add OpenAnolis Support
Add Tencent CCP Integration Support
o Cross languages framework based on Gramine
Document updates
Add Tencent CCP integration Support
o PSI
Document updates
Add Tencent CCP integration Support
Upgrade Gramine to v1.2
Add OpenAnolis Support -
Integration to 1 new open community - OpenAnolis
OpenAnolis CNCC SIG accepts CCZoo as one project member
i. Add CCZoo Introduction in the main page
ii. Publish 2 Solutions from CCZoo based on Anolis container -
New documents added in cczoo.readthedoc.io
a. Add documents for
i. Secure Logistic Logical Regression Inference with HE and SGX
ii. Librats
CCZoo v0.5 Release
What’s New
-
3 solutions published in main branch, ready for use.
o Homogenous Logistic Regression Training with Intel Paillier Library and Intel SGX - link
o Private Set Intersection (PSI) with Intel SGX - link
o BigDL Privacy Preserving Machine Learning (PPML) - link -
Add 1 new Public Cloud Deployment Validation Configuration
o Add new one Cloud Deployment
- Microsoft Azure - DCsv3-series. -
New documents added in cczoo.readthedoc.io
Add documents for -
Updates of Previously-Published Solutions.
o RA-TLS enhanced gRPC- Rename docker name
- Upgrade dockerfile 18.04 to 20.04
o Horizontal Federated Learning - Document updates.
- Add 1 new demo - Recommendation system
o TensorFlow Serving Cluster PPML - Upgrade dockerfile 18.04 to 20.04
o Cross languages framework based on Gramine - Document updates
- Update remote attestation config
CCZoo v0.4 Release
What’s New:
-
3 new reference solution published in main branch, ready for use.
- Attestation and Secret Provision Service (ASPS)
Brief Introduction:
This solution provides a secret provision service following RA-TLS based remote attestation through gRPC.
Secrets are stored in KMS that is hosted on tenant side beforehand and Secrets distribution is managed by Policy Manager according to predefined policy. Once tenant client verifies quote from CSP SGX Enclave successfully, KMS agent retrieves secrets from KMS and tenant sends them to the remote CSP SGX Enclave through an established secure gRPC channel. - Cross Language Framework based on Gramine
Brief Introduction:
This framework aims to ease the non-C language (e.g. Java) to do SGX remote attestation and transfer key/data between untrust node
(clf_client / where running SGX enclave) and trust node(clf_server) when using Gramine. - Vertical Federated Learning
Brief Introduction:
This solution based on a ByteDance end-to-end open-source framework, called Fedlearner, based on TensorFlow, integrates SGX for
machine learning, providing interfaces that facilitate federated learning tasks.
- Attestation and Secret Provision Service (ASPS)
-
Add 1 new Public Cloud Deployment Validation Configuration
- ByteDance Volcengine SGX Instances (Bare metal)
-
New documents added in cczoo.readthedoc.io
- Attestation and Secret Provision Service (ASPS)
- Cross Language Framework based on Gramine
- Vertical Federated Learning
-
Updates of Previously-Published Solutions.
- RA-TLS enhanced gRPC
- Add Occlum backend support
- Add customized option for 1-way or 2-way TLS configuration.
- Provide optional RA-TLS SDK option
- Horizontal Federated Learning
- Document updates.
- RA-TLS enhanced gRPC
v0.3
What's New
-
1 new incubating component project published in main branch, ready for use.
-
RATS-TLS v1.0 - link
Brief Introduction:
This project provides a proof-of-concept implementation on how to integrate Intel SGX remote attestation into the TLS connection setup. Conceptually, it extends the standard X.509 certificate with SGX-related information. It also provides three non-SGX clients (mbedtls, wolfSSL, OpenSSL) to show how seamless remote attestation works with different TLS libraries.
-
-
1 new solution published in main branch, ready for use.
-
eHSM-KMS v0.2.1 - link
Brief Introduction:
This solution, based on Intel SGX, provides a product-quality reference to help the customers setup a customized KMS (Key Management System) with the capabilities to create and manage cryptographic keys in their cloud environments.
-
-
3 published solutions validated in Ali Cloud and Tencent Cloud
-
New organization of GitHub main page with 3 designed tables
- Solution List (Solution to Component Correlation) – Include 12 solutions.
- Incubating Component Projects – Include 2 components.
- Cloud Deployment – Provide detailed cloud configuration of Ali/Tencent.
-
New documents added in cczoo.readthedoc.io
- Add Cloud Deployment – Ali Cloud, Tencent Cloud, Azure Cloud
- Add documents for RATS-TLS v1.0 and eHSM-KMS v0.2.1.
-
Add CI/CD basic test
- Add docker image build test for TensorFlow Serving Cluster PPML, Horizontal Federated Learning,
RA-TLS Enhanced gRPC.
- Add docker image build test for TensorFlow Serving Cluster PPML, Horizontal Federated Learning,
Bug Fixes
No known issues
Solution Deployment
Please follow the steps in each solution documents to run each solution.
CCZoo Release v0.2
Highlights
Publish 2 new solutions:
-
Horizontal Federal Learning based on SGX
Components
TEE : Intel SGX
LibOS : Gramine
App : Tensorflow
Encryption/Decryption : Yes
TLS : gRPC -
Components
TEE : Intel SGX
App : gRPC
Encryption/Decryption : Yes