Edgeless Systems Releases Confidential Kubernetes Distribution

By

Constellation is a secure Kubernetes implementation that leverages confidential computing.

Confidential computing is a relatively new security paradigm that addresses the problem of running sensitive workloads on someone else’s infrastructure, says Felix Schuster. Fundamentally, he explains, “confidential computing is about two things: (1) keeping workloads encrypted and isolated during processing and (2) making this circumstance externally verifiable via cryptographic certificates.”

Now, Edgeless Systems has released Constellation, a secure implementation of Kubernetes (K8s) that leverages confidential computing. The open source Constellation distribution is “a CNCF-certified K8s and, from a usability perspective, should work like “normal” K8s distributions. Constellation adds features like Sigstore-based supply chain security to the core Confidential K8s concept,” Schuster says.

According to the website, Constellation runs on Microsoft Azure, Google Cloud Platform, and Amazon Web Services.

Learn more at The New Stack.

10/07/2022

Related content

  • Docker 2.0 Announced
  • Encrypt and decrypt files with Age or Rage
    Age and Rage are the Go and Rust implementations of a simple, modern, and secure file encryption tool.
  • Safeguard and scale containers
    Security, deployment, and updates for thousands of nodes prove challenging in practice, but with CoreOS and Kubernetes, you can orchestrate container-based web applications in large landscapes.
  • Nested Kubernetes with Loft
    Kubernetes has limited support for multitenancy, so many admins prefer to build multiple standalone Kubernetes clusters that eat up resources and complicate management. As a solution, Loft launches any number of clusters within the same control plane.
  • IBM Open Technology Group
    Director of the IBM Open Technology group Nimesh Bhatia shares details about the company's involvement in open source and how its latest acquisition of Red Hat compliments its existing endeavors in the cloud.
comments powered by Disqus