{"id":13630278,"url":"https://github.com/edgelesssys/edgelessdb","last_synced_at":"2025-12-30T00:22:44.891Z","repository":{"id":37745979,"uuid":"341208515","full_name":"edgelesssys/edgelessdb","owner":"edgelesssys","description":"EdgelessDB is a MySQL-compatible database for confidential computing. It runs entirely inside a secure enclave and comes with advanced features for collaboration, recovery, and access control.","archived":true,"fork":false,"pushed_at":"2023-03-12T14:29:41.000Z","size":496,"stargazers_count":170,"open_issues_count":8,"forks_count":17,"subscribers_count":8,"default_branch":"main","last_synced_at":"2024-08-01T22:45:43.744Z","etag":null,"topics":["confidential-computing","database","enclave","mariadb","mysql","sgx","sql"],"latest_commit_sha":null,"homepage":"https://edgeless.systems/products/edgelessdb","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/edgelesssys.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":"ROADMAP.md","authors":null}},"created_at":"2021-02-22T13:24:30.000Z","updated_at":"2024-05-12T11:49:31.000Z","dependencies_parsed_at":"2024-01-14T06:56:48.362Z","dependency_job_id":null,"html_url":"https://github.com/edgelesssys/edgelessdb","commit_stats":null,"previous_names":[],"tags_count":7,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/edgelesssys%2Fedgelessdb","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/edgelesssys%2Fedgelessdb/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/edgelesssys%2Fedgelessdb/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/edgelesssys%2Fedgelessdb/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/edgelesssys","download_url":"https://codeload.github.com/edgelesssys/edgelessdb/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":223757330,"owners_count":17197540,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["confidential-computing","database","enclave","mariadb","mysql","sgx","sql"],"created_at":"2024-08-01T22:01:36.904Z","updated_at":"2025-12-30T00:22:44.858Z","avatar_url":"https://github.com/edgelesssys.png","language":"Go","readme":"EdgelessDB\n[![Unit Tests][unit-tests-badge]][unit-tests]\n[![GitHub license][license-badge]](LICENSE)\n[![Discord Chat][discord-badge]][discord]\n==\n\n\u003cimg src=\"src/logo.svg\" alt=\"logo\" width=\"40%\"\u003e\n\n[EdgelessDB](https://edgeless.systems/products/edgelessdb) is an open-source MySQL-compatible database for [confidential computing](https://confidentialcomputing.io). EdgelessDB runs entirely inside runtime-encrypted Intel SGX enclaves. In contrast to other databases, EdgelessDB ensures that all data is always encrypted—in memory as well as on disk. EdgelessDB has no storage constraints and delivers close to native performance.\n\nCentral to EdgelessDB is the concept of a *manifest*. The manifest is defined in JSON and is similar to a smart contract. It defines the initial state of the database, including access control, in an attestable way.\n\nArchitecturally, EdgelessDB is based on [MariaDB](https://github.com/MariaDB/server). As storage engine, it uses an enhanced version of [RocksDB](https://rocksdb.org/). The file encryption of EdgelessDB's storage engine is designed and built for the enclave and its very strong attacker model. In this context, EdgelessDB's storage engine provides confidentiality, integrity, freshness, auditability, and recoverability for data. Other databases, even when running inside enclaves using general-purpose frameworks, do not have these security properties.\n\n## Use cases\n\n1. Bring security to the next level and replace your existing database with EdgelessDB. The added security may allow you to shift sensitive databases from on-premises to the cloud.\n2. Build exciting new *confidential apps* by leveraging EdgelessDB's manifest feature and security properties, for example pooling and analyzing sensitive data between multiple parties.\n\n## Key features\n\n* Always encrypted: in addition to authenticated encryption on disk, the data is also encrypted in memory at runtime.\n* Manifest: defines the initial database state, including access control.\n* Remote attestation: proves that the EdgelessDB instance runs in a secure enclave and enforces the manifest.\n\nFor details see [concepts](https://docs.edgeless.systems/edgelessdb/getting-started/concepts).\n\n## Getting started\n\nRun EdgelessDB on an SGX-capable system:\n```sh\ndocker run -t --name my-edb -p3306:3306 -p8080:8080 --device /dev/sgx_enclave --device /dev/sgx_provision ghcr.io/edgelesssys/edgelessdb-sgx-1gb\n```\n\nOr try it in simulation mode on any system:\n```sh\ndocker run -t --name my-edb -p3306:3306 -p8080:8080 -e OE_SIMULATION=1 ghcr.io/edgelesssys/edgelessdb-sgx-1gb\n```\n\nYou may want to start with [using EdgelessDB as a high-security SQL database](https://docs.edgeless.systems/edgelessdb/getting-started/quickstart-sgx) in a possibly untrusted environment.\n\nOr [check out the demo](demo) to see how EdgelessDB's confidential-computing features can be used for secure multi-party data processing.\n\n## Documentation\n\nSee [the docs](https://docs.edgeless.systems/edgelessdb) for details on EdgelessDB concepts, configuration, and usage.\n\n## Community \u0026 help\n\n* Got a question? Please get in touch via [Discord][discord] or file an [issue](https://github.com/edgelesssys/edgelessdb/issues).\n* If you see an error message or run into an issue, please make sure to create a [bug report](https://github.com/edgelesssys/edgelessdb/issues).\n* Get the latest news and announcements on [Twitter](https://twitter.com/EdgelessSystems), [LinkedIn](https://www.linkedin.com/company/edgeless-systems/) or sign up for our monthly [newsletter](https://www.edgeless.systems/#newsletter-signup).\n* Visit our [blog](https://blog.edgeless.systems/) for technical deep-dives and tutorials.\n\n## Contribute\n\n* Read [CONTRIBUTING.md](CONTRIBUTING.md) for information on issue reporting, code guidelines, and our PR process.\n* [BUILD.md](BUILD.md) includes general information on how to work in this repo.\n* Pull requests are welcome! You need to agree to our [Contributor License Agreement](https://cla-assistant.io/edgelesssys/edgelessdb).\n* This project and everyone participating in it are governed by the [Code of Conduct](/CODE_OF_CONDUCT.md). By participating, you are expected to uphold this code.\n* Please report any security issue via a [private GitHub vulnerability report](https://github.com/edgelesssys/edgelessdb/security/advisories/new) or write to security@edgeless.systems.\n\n\u003c!-- refs --\u003e\n[unit-tests]: https://github.com/edgelesssys/edgelessdb/actions\n[unit-tests-badge]: https://github.com/edgelesssys/edgelessdb/workflows/Unit%20Tests/badge.svg\n[license-badge]: https://img.shields.io/github/license/edgelesssys/edgelessdb\n[discord]: https://discord.gg/rH8QTH56JN\n[discord-badge]: https://img.shields.io/badge/chat-on%20Discord-blue\n","funding_links":[],"categories":["Go","Encrypted Databases and Key-value Stores"],"sub_categories":["Library OSes and SDKs"],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fedgelesssys%2Fedgelessdb","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fedgelesssys%2Fedgelessdb","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fedgelesssys%2Fedgelessdb/lists"}