Skip to main content

Today, data is often encrypted at rest in storage and in transit across the network, but not while in use in memory. Additionality, the ability to protect data and code while it is in use is limited in conventional computing infrastructure. Organizations that handle sensitive data such as Personally Identifiable Information (PII), financial data, or health information need to mitigate threats that target the confidentiality and integrity of either the application or the data in system memory.

Source: Confidential Computing Consortium

Link: https://confidentialcomputing.io/wp-content/uploads/sites/85/2021/03/confidentialcomputing_outreach_whitepaper-8-5x11-1.pdf

Enarx

2020-12-08

Present

Mike B
Shaun
axel
Ben

Agenda

Events

DevConf.cz

We have a booth and a session accepted!

Usenix

Consider submitting a proposal?

FOSDEM 2021

TEE devroom is happening, CFP: deadline 23rd of Dec 2020

Red Hat Summit 2021

Lily and Connor have a proposal in.

Confidential Computing Consortium

Slowing down for the holidays.

General Outreach Efforts

Linkedin

Mike published an update about the release of ciborium to the LinkedIn page. Axel will check with Mike D. on next step for the interviews.

Enarx

2020-11-17

Present

Mike D
Shaun
axel

Agenda

Events

DevConf.cz

Waiting on further news.

Fosdem

Happening, virtual, TEE / "hardware aided computing" devroom should be happening. We are welcome to take part in it.

Confidential Computing Consortium updates

Asking for an Etherpad instance, idea being considered.

General outreach efforts

LinkedIn

Interviews: first one ready.
What's our process for proofreading them before publishing? We will usee simple Github issues for now and see how it goes..

Banner: LF graphics team will have a look at improving it.

Enarx

Ben
Mike D
Mike B
Shaun
axel

Agenda

Events

DevConf.cz

Submitted: booth and tech talk

Fosdem

Is it happening? very much a "hallway track" event. Is there a devroom? last year, the hardware-assisted security one was where we should have been presenting. Is it happening this year? Should ConfC2 offer to make one? axel to reach out to Vasily to see if he's proposing a devroom this year. Ben to reach out to ConfC2 to see if they want to help with devroom, or propose one if Vasily is out. Deadline for devroom proposal is Oct 31. Time is tight.

TODO: axel to reach out to Vasily

OSS EU

Ongoing, very quiet.

Confidential Computing Consortium updates

TAC white paper

TAC white paper is now published: https://confidentialcomputing.io/confidential-computing-deep-dive-white-paper/

TODO: share paper on LinkedIn, Twitter.

Attestation work across the projects ongoing.

Webinar on the 10 (12?) November 2020, based on the analyst deck.

Market figures

Asking analysts to come up with numbers.

Elections

TAC and Outreach elections coming up.

General outreach efforts

LinkedIn

Interviews: first one getting ready.

Banner: will ask LF for some improvements to it.
TODO: axel to reach out to Stephano

In classical computing, data exists in three states: in transit, at rest, and in use. Data traversing the network is “in transit,” data in storage is “at rest,” and data being processed is “in use.” In a world where we are constantly storing, consuming, and sharing sensitive data – from credit card data to medical records, from firewall configurations to our geolocation data – protecting sensitive data in all of its states is more critical than ever.

Source: Confidential Computing Consortium

Link: https://confidentialcomputing.io/wp-content/uploads/sites/85/2022/01/CCC-A-Technical-Analysis-of-Confidential-Computing-v1.2.pdf

Enarx

2020-10-13

Present

Mike D
Mike B
Shaun
axel

Agenda

Events

DevConf.us

OSS EU

25 October. Booth, Mike B has signed up to staff it.
Enarx doesn't have a booth.

Confidential Computing Consortium updates

Work happening on the TAC white paper

Talking to a number of new projects to join as general members (Edgeless just joined)

Attestation work across the projects

General outreach efforts

Youtube

Videos added regularly to playlists and channel

LinkedIn

Need to keep the idea moving.
Mike D tested the waters with a small post reusing Mike's recent talk at Devconf.us to see who was interested.
Suggests doing more of that, using video contet we have. All agree.

Interviews: @axelsimon to finish @m-dombrowski's questions for the first interview.

Enarx

Ben
Mike B.
Shaun
axel

Agenda

Events

RSA conference

Mike has answered: two talks, one Enarx-based.

DevConf US

Hopin.to so much better than things we've used before. Problem: people a bit bored of online conferences. Last slot in the day, so only US-based folks saw the talk. Good video, now published on YT. All in all, went rather well.

Future conferences

Ask to have polls asked on our behalf? ("Do you know Confidential Computing?")

OSS Europe (Dublin, 26 October)

No access to platform yet. Should have time to prepare. Timeslots not confirmed yet, will sign-up volunteers once we have them.

Confidential Computing Consortium

Outreach / Speaker Bureau

Creating group of staff and membership, with full bio. Work with TAC, to have technical profiles. List of topics.

Enarx short stories

Ongoing, Mike D. started a set of questions. Axel to be the first interviewee.

Enarx briefs

Mike: start by having a wiki in a good position and use that as the source.

Mike Bursell
Nathaniel McCallum

Deploying applications to the Cloud (or IoT, or the Edge) is all very well ... until you start running sensitive workloads. Can you trust the OS? The hypervisor? The stack? The cloud provider? The host owner? We all know that the answer to all of these is not always "yes": Enarx is a project using the hardware-based secuirty of TEEs (Trusted Execution Environments), to reduce the number of components and parties you need to trust. Find out how it works, why it uses WebAssembly for your runtime, and how to contribute.

Source: DevConf 2020

Link: https://www.youtube.com/watch?v=y_eDNTIkBBE