Explore the potential of workload attestation mechanisms for identity provisioning in multi-cloud environments during this 19-minute conference talk. Delve into how strong identities can simplify policy management and enhance service integration. Learn about the opportunity to elevate threat models and strengthen application identities using Intel SGX technology in confidential computing. Discover the concept of an SGX Attestor and its ability to reflect not only where code runs but also the loaded application code and supporting filesystem configuration. Understand the benefits of this approach, including seamless integration between sensitive workloads in untrusted environments and those in trusted environments, with minimal additional developer effort.
Attestation and Identity Provisioning to Intel SGX Workloads
CNCF [Cloud Native Computing Foundation] via YouTube
Overview
Syllabus
Attestation and identity provisioning to Intel SGX workloads - Andrey Brito
Taught by
CNCF [Cloud Native Computing Foundation]
Related Courses
-
Intel SGX Remote Attestation is Not Sufficient
-
Hiding Attestation with Linux Keyring in Confidential Virtual Machines
-
Foreshadow - Extracting the Keys to the Intel SGX Kingdom with Transient Out-of-Order Execution
-
State of Intel SGX in Linux
-
Trusted Execution Environments - A Technical Overview of Intel SGX, Arm TrustZone, and RISC-V PMP
-
Device Attestation in Hardware TEE-Based Confidential Computing
