Confidential Computing is the protection of data in use by performing computation in a hardware-based, attested Trusted Execution Environment.
A Trusted Execution Environment (TEE) is an environment that provides a level of assurance of the following three properties: data integrity, data confidentiality, and code integrity.
TEEs may have additional attributes such as code confidentiality, programmability, recoverability, and attestability.
Confidential Computing aims to reduce the ability for the owner/operator/pwner of a platform to access data and code inside TEEs sufficiently such that this path is not an economically or logically viable attack during execution.
A unified framework for privacy-preserving data analysis and machine learning
Enarx: Confidential Computing with WebAssembly
A Framework for Encrypted Machine Learning in TensorFlow
Apache Teaclave™ SGX SDK helps developers to write Intel SGX applications in the Rust programming language, and also known as Rust SGX SDK.
Versatile framework for multi-party computation
Constellation is the first Confidential Kubernetes. Constellation shields entire Kubernetes clusters from the (cloud) infrastructure using confidential computing.
Apache Teaclave™ is an open source universal secure computing platform, making computation on privacy-sensitive data safe and simple.
A novel container runtime, aka confidential container, for cloud-native confidential computing and enclave runtime ecosystem.
EGo is an open-source SDK that enables you to develop your own confidential apps in the Go programming language.
A curated list of open-source projects that help exploit Intel SGX technology
MPyC: Multiparty Computation in Python
Deploy any app to TEE.
Confidential Computing Zoo provides confidential computing solutions based on Intel SGX, TDX, HEXL, etc. technologies.
MarbleRun is the control plane for confidential computing. Deploy, scale, and verify your confidential microservices on vanilla Kubernetes. 100% Go, 100% cloud native, 100% confidential.
Teaclave TrustZone SDK enables safe, functional, and ergonomic development of trustlets.
Regorus - A fast, lightweight Rego (OPA policy language) interpreter written in Rust.
Main repository for the Veracruz privacy-preserving compute project, an adopted project of the Confidential Compute Consortium (CCC).
Assured confidential execution (ACE) implements VM-based trusted execution environment (TEE) for embedded RISC-V systems with focus on a formally verified and auditable firmware.