Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/SOFAEnclave/KubeTEE

KubeTEE is a collection of TEE development, deployment, maintenance middleware framework, and services, especially for Kubernetes workflow.
https://github.com/SOFAEnclave/KubeTEE

Last synced: 3 months ago
JSON representation

KubeTEE is a collection of TEE development, deployment, maintenance middleware framework, and services, especially for Kubernetes workflow.

Host: GitHub
URL: https://github.com/SOFAEnclave/KubeTEE
Owner: SOFAEnclave
License: apache-2.0
Created: 2020-09-08T07:42:44.000Z (over 4 years ago)
Default Branch: master
Last Pushed: 2020-09-27T12:43:44.000Z (over 4 years ago)
Last Synced: 2024-08-02T02:10:39.321Z (6 months ago)
Homepage:
Size: 202 KB
Stars: 77
Watchers: 8
Forks: 11
Open Issues: 0
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

awesome-sgx - SOFAEnclave/KubeTEE - KubeTEE is a collection of TEE development, deployment, maintenance middleware frameworks, and services. Especially, it is for cloud-native workflows. (SDK)
awesome-cloud-native - KubeTEE - A collection of TEE development、deployment、maintenance middleware framework for Kubernetes. (Security)

README

# KubeTEE

Use of TEE in a cloud-native way.

## Introduction to KubeTEE
KubeTEE is a collection of TEE development, deployment, maintenance middleware frameworks,
and services. Especially, it is for cloud-native workflows.
As the name implies, KubeTEE is based on the docker containers, Kubernetes orchestration,
and other cloud-native technologies. Its goal is to help developers to implement TEE-based
applications and deploy TEE services more easily and smoothly.

![KubeTEE overview](docs/kubetee.jpg)

KubeTEE is currently mainly based on Intel (R) Software Guard Extensions (Intel (R) SGX).
SGX is a CPU-based hardware security technology provided by Intel. It uses encrypted memory
to protect runtime code and data from being stolen and Malicious tampering.

## KubeTEE Components/Services List

- [sgx-device-plugin](https://github.com/AliyunContainerService/sgx-device-plugin) is a daemonset to inject the SGX device into container and to manage the SGX EPC resource.
- [trusted-function-framework](https://github.com/SOFAEnclave/trusted-function-framework) is SGX partition model application programming framework.
- [enclave-configuration-service](https://github.com/SOFAEnclave/enclave-configuration-service) is a remote attestation based enclave configuration service.
- [protobuf-sgx](https://github.com/SOFAEnclave/protobuf-sgx) is protobuf-cpp with SGX modifications which can be used in enclave.

If you want to contribute, please go directly to the project you are interested in.

## Report issues

If you find any source code bug, please create a issue in the repository directly.
For any other problems or security vulnerabilities, you can also contact us by [email](mailto:[email protected]).