intel / trusted-certificate-issuer
Trusted Certificate Service (TCS) is a K8s service to protect signing keys using Intel's SGX technology. K8s CSR and cert-manager CR APIs are both supported. TCS also contains integration samples for Istio service mesh and Key Management Reference Application (KMRA).
☆29Updated 4 months ago
Related projects: ⓘ
- Attestation and Secret Delivery Components☆58Updated this week
- Process-based Confidential Container Runtime☆74Updated this week
- ☆37Updated last year
- Generic Attestation Service☆39Updated 9 months ago
- Operator to deploy confidential containers runtime☆107Updated this week
- Confidential Containers Guest Tools and Components☆81Updated this week
- go-sev-guest offers a library to wrap the /dev/sev-guest device in Linux, as well as a library for attestation verification of fundamenta…☆46Updated 2 weeks ago
- Ability to create Kata pods using cloud provider APIs aka the peer-pods approach☆47Updated this week
- Confidential Containers Community☆176Updated this week
- ☆56Updated this week
- Administrative utility for AMD SEV☆41Updated last week
- Documentation for the confidential containers project☆73Updated last year
- AMD SEV Tool☆79Updated last year
- Formal specification of attestation mechanisms in Confidential Computing☆14Updated 3 weeks ago
- Key Broker Server for SEV(-ES)☆11Updated last month
- TUF repository for Sigstore trust root☆84Updated this week
- A CLI tool for interacting with SEV-SNP guest environment☆37Updated last week
- Edgeless RT is an SDK and a runtime for Intel SGX. It combines top-notch Go support with simplicity, robustness and a small TCB. Developi…☆130Updated this week
- Generate and verify JWT tokens with Trusted Platform Module (TPM)☆11Updated last month
- Confidential Containers Shim Firmware☆91Updated this week
- ☆30Updated this week
- Administrative utility for SEV-SNP☆21Updated this week
- go-tdx-guest offers a library to wrap the /dev/tdx-guest device in Linux, as well as a library for attestation verification of fundamenta…☆50Updated 2 weeks ago
- Rust implementation of the keylime agent☆96Updated last week
- Attestation verification services based on Veraison components☆24Updated this week
- A Go implementation of in-toto. in-toto is a framework to protect software supply chain integrity.☆128Updated this week
- Go packages built on go-tpm providing a high-level API for using TPMs☆223Updated this week
- COCONUT-SVSM☆107Updated this week
- The Confidential Computing Certifier Framework consists of a client API called the Certifier-API and server-based policy evaluation calle…☆52Updated last month
- Tools and runtime for launching unmodified container images in Trusted Execution Environments☆142Updated 2 months ago