Edgeless Systems Releases Confidential Kubernetes Distribution

By

Constellation is a secure Kubernetes implementation that leverages confidential computing.

Confidential computing is a relatively new security paradigm that addresses the problem of running sensitive workloads on someone else’s infrastructure, says Felix Schuster. Fundamentally, he explains, “confidential computing is about two things: (1) keeping workloads encrypted and isolated during processing and (2) making this circumstance externally verifiable via cryptographic certificates.”

Now, Edgeless Systems has released Constellation, a secure implementation of Kubernetes (K8s) that leverages confidential computing. The open source Constellation distribution is “a CNCF-certified K8s and, from a usability perspective, should work like “normal” K8s distributions. Constellation adds features like Sigstore-based supply chain security to the core Confidential K8s concept,” Schuster says.

According to the website, Constellation runs on Microsoft Azure, Google Cloud Platform, and Amazon Web Services.

Learn more at The New Stack.

10/07/2022

Related content

  • Lead Image © Goran Bogicevic, Fotolia.com
    Production-ready mini-Kubernetes installations
    Kubernetes can be highly complex, with massive setup routines that are totally over the top for newcomers. If you want to try out Kubernetes or run it in production, you have a number of options, even if you decide not to use the comprehensive packages from established vendors.
    more »
  • Encrypt and decrypt files with Age or Rage
    Age and Rage are the Go and Rust implementations of a simple, modern, and secure file encryption tool.
    more »
  • Lead Image © cepixx, 123RF.com
    Safeguard and scale containers
    Security, deployment, and updates for thousands of nodes prove challenging in practice, but with CoreOS and Kubernetes, you can orchestrate container-based web applications in large landscapes.
    more »
  • Photo by Andrea Davis on Unsplash
    Nested Kubernetes with Loft
    Kubernetes has limited support for multitenancy, so many admins prefer to build multiple standalone Kubernetes clusters that eat up resources and complicate management. As a solution, Loft launches any number of clusters within the same control plane.
    more »
  • Photo by CHUTTERSNAP on Unsplash
    Persistent storage management for Kubernetes
    The container storage interface (CSI) allows CSI-compliant plugins to connect their systems to Kubernetes and other orchestrated container environments for persistent data storage.
    more »
comments powered by Disqus