Skip to main content

  • Mike
  • Nick

Agenda

General discussion​

New Enarx.dev Website​

Enarx's new website continues evolving. We added a Resources section, where users can filter for different resources: articles, blog posts, events, meetings, podcasts, and releases. The homepage now highlights Docs, Resources, GitHub, Meetings, Events, and Chat. The documentation has been updated and there were various fixes. Next steps include implementing search and developing a better deployment workflow.

https://enarx.dev/

Outreachy​

The Enarx project received 10 Outreachy applicants, of which 9 were able to successfully complete the first task this past month. Looking at the work developed by these 9 applicants, we are considering 3 strong candidates for an internship. The WebAssembly tutorials developed by these applicants are available at:

https://github.com/enarx/outreachy

Events​

Mike and Nick discussed several upcoming events:

Cloud Security Alliance​

RSA-C NA 2022​

  • Dates: 2022-02-07
  • Proposal submitted.

OC3​

FOSDEM​

Privacy-Enhancing Technology Summit Europe​

Privacy-Enhancing Technology Summit USA​

Mike Bursell

We have our first release of Enarx, and a new look for the website. This first release, version 0.1.1, is codenamed Alamo, and provides an easy way in to using Enarx. As always, it’s completely open source: you can look at every single line of our code. It doesn’t provide a full feature set, but what it does do is allow you, for the first time, to write an application, compile it to WebAssembly, and then run it.

Source: Alice, Eve and Bob – a security blog

Link: https://aliceevebob.com/2021/11/02/enarx-first-release/

The Linux Foundation, the nonprofit organization enabling mass innovation through open source, along with the Confidential Computing Consortium today released findings from a market study by Everest Group which shows the Confidential Computing market is projected to grow at a CAGR of 90%-95% to reach US$ 54 billion in 2026.

Source: Confidential Computing Consortium

Link: https://confidentialcomputing.io/wp-content/uploads/sites/85/2021/10/Everest_Group_-_Confidential_Computing_-_The_Next_Frontier_in_Data_Security_-_2021-10-19.pdf

  • Nick
  • Penglin
  • Shaun

Agenda

General discussion​

New Enarx.dev Website​

Nick introduced Enarx's new website with a focus on documentation.

https://enarx.dev/

The website uses Docusaurus with support for markdown, versioning, and i18n. It provides a single-page application, leveraging the full power of React:

https://docusaurus.io/

Outreachy​

Nick gave an update on the Outreachy program. After a brief introduction to Confidential Computing and Enarx, the focus has been on understanding WebAssembly and building the first demos. Applicants developed some examples of running WebAssembly "inside" the browser and "outside." The reason is because when starting out with WebAssembly, it's not obvious that you can have it run standalone. Most examples (in the Internet) in fact target the browser. There are also examples of embedding into other programming languages. Some applicants had to redo their work, so that took some time.

https://github.com/enarx/outreach/issues/15

https://www.outreachy.org/

Events​

Cloud Security Alliance​

Rolling CFP till 2021-December-31. Let's create a proposal in October/November.

https://www.cvent.com/c/abstracts/6e04faab-fd38-4df4-b2a3-2e2780b7c24b

  • Ben
  • Kira
  • Mandeep
  • Mike
  • Nick
  • Penglin
  • Shaun

Agenda

General discussion​

Outreachy​

We welcomed our first Outreachy applicants. Kira and Mandeep were on the call and shared more about themselves

https://github.com/enarx/outreach/issues/15

https://www.outreachy.org/

Introducing Penglin​

Penglin was also on the Outreach call and introduced himself to Ben and Shaun for the first time.

Events​

Cloud Security Alliance​

Rolling CFP till 2021-December-31. Let's create a proposal in October/November.

https://www.cvent.com/c/abstracts/6e04faab-fd38-4df4-b2a3-2e2780b7c24b

Nick Vidal

We're pleased to announce that Profian has joined the Confidential Computing Consortium, a Linux Foundation community dedicated to defining and accelerating the adoption of Confidential Computing. Profian believes that working together with the Linux Foundation and other organizations to make Confidential Computing accessible, well understood, and built in a standardized way is not only important, but key to bringing cryptographic proof and verifiable trust to general computing. By joining the Confidential Computing Consortium, it reaffirms its commitment to advance this technology that will have a major impact across all industries.

Source: Profian's Blog

Link: https://blog.profian.com/profian-joins-confidential-computing-consortium/

  • axel
  • Ben
  • Mike
  • Nick
  • Shaun

Agenda

General discussion​

Blog​

Enarx's Blog is now live. Nick is coordinating with Ashley and the Linux Foundation to configure DNS for blog.enarx.dev. First post about the New Custodian was published yesterday at:

https://enarx.ghost.io/

Enarx Keeploader​

As we are getting ready for our first release, Nathaniel has recommended that we give more visibility to enarx-keepldr. We also heard feedback from new users who couldn't find their way around running enarx just by looking at the current enarx/enarx github repo. That's because there is no actual enarx code there, just documentation. So the proposal is to move the enarx/enarx-keepldr code to enarx/enarx, and keep the documentation on enarx/enarx under the wiki. Here's a brief action plan:

  1. Move keepldr code to enarx/enarx (maintains git history)
  2. Remove docs folder from enarx/enarx, and move it to the wiki
  3. Move keepldr wiki (2 pages) to enarx/enarx wiki
  4. Transfer keepldr issues to enarx/enarx
  5. Transfer enarx/enarx non-code issues to enarx/outreach
  6. PRs can still get merged across repos (from keepldr to enarx/enarx)

Vulnerability Disclosure and Embargo Policy​

The CCC has again urgently requested that all CCC projects have a disclosure policy. I sent a PR to adopt the Vulnerability Disclosure and Embargo Policy proposed by axel:

https://github.com/enarx/rfcs/tree/master/00002-vulnerability-disclosure-and-embargo-policy

CCC​

The TAC has approved Enarx and other CCC projects to be part of the Outreachy program. Besides the benefits of the program itself, another benefit is bringing the CCC projects closer together to collaborate and grow their communities.

Outreachy​

The Outreachy community application deadline was extended to October 6. Nick and Ashley already filled out the application.

https://github.com/enarx/outreach/issues/15

https://www.outreachy.org/

Hacktoberfest​

Hacktoberfest's website is now live. We are aiming to build simple demos on top of Enarx.

https://github.com/enarx/outreach/issues/14

https://hacktoberfest.digitalocean.com/

Events​

Open Source Summit​

Some CCC US-based members are currently at the OSS. Mike was in a panel (virtual):

https://osselc21.sched.com/event/lAUA/panel-discussion-evolving-the-confidential-computing-consortium-non-profit-collaboration-for-growth-stephen-walli-aeva-black-microsoft-mike-bursell-congruus

Enigma / Usenix​

Results for Enigma will come on the 30th:

https://www.usenix.org/conference/enigma2021/call-for-participation

Cloud Security Alliance​

Rolling CFP till 2021-December-31. Let's create a proposal in October/November.

https://www.cvent.com/c/abstracts/6e04faab-fd38-4df4-b2a3-2e2780b7c24b