Code Monkey home page Code Monkey logo

confidential-container-samples's Introduction

page_type languages products description urlFragment
sample
yaml
python
shell
C++
azure-confidential-computing
azure-kubernetes-service
azure attestation-service
confidential-containers
Confidential containers on AKS samples
confidential-containers-samples

Confidential container samples

Flask sample MIT license badge

Confidential containers are a set of capabilities that allow standard containers (Linux or Windows) to run in a hardware root of trusted established environment. Confidential containers refer to a set of capabilities that achieves the principles of confidential computing. Read more about confidential containers here

Important: This repo is aggregated samples based on real world customer scenarios based and may involve Azure Partner Solution or an Open Source Project for its implementation. All implementations in this repo will host Azure Kubernetes Service (AKS) based deployments. Please review the sample repo for pre-requisites to deploy and run this application.

Prerequisites

How to use this template repository

This repo is organized by folders that states the sample name followed by the enablers of confidential containers. A typical folder name follows this standard < samplename >-< enabername > :

Confidential Healthcare Application on Intel SGX based confidential containers

Confidential HealthCare Implementation with Scone, Confidential Inferencing & Azure Attestation

Confidential NLP Inferencing using ACI

Confidential NLP with OSS models on ACI

Confidential Big Data Analytics with Apache Spark and Azure SQL Always Encrypted secured enclaves on Intel SGX based confidential containers

Confidential Big Data Analytics with Apache Spark on SGX-enabled Containers using Scone

Apache Spark applications with BigDL PPML and Occlum on Azure Intel SGX enabled Confidential Virtual machines on AKS

Apache Spark sample with NY Taxi data sample data processing from with containers using open source software Occlum

Remote attestation Web API Helper for Confidential VM's (AMD SEV-SNP) on AKS

Confidential VM (AMD SEV-SNP) Remote Attestation Web API Helper Sample

Confidential Azure Container Instances ( ACI ) demo with remote attestation

Confidential ACI demo

Contributing

This project welcomes contributions and suggestions. Most contributions require you to agree to a Contributor License Agreement (CLA) declaring that you have the right to, and actually do, grant us the rights to use your contribution. For details, visit https://cla.opensource.microsoft.com.

When you submit a pull request, a CLA bot will automatically determine whether you need to provide a CLA and decorate the PR appropriately (e.g., status check, comment). Simply follow the instructions provided by the bot. You will only need to do this once across all repos using our CLA.

This project has adopted the Microsoft Open Source Code of Conduct. For more information see the Code of Conduct FAQ or contact [email protected] with any additional questions or comments.

confidential-container-samples's People

Contributors

agowdamsft avatar mdrakiburrahman avatar microsoft-github-operations[bot] avatar microsoftopensource avatar pkhandavilli avatar saketmicrosoft avatar vinfnet avatar xiangyut avatar

Stargazers

avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar

Watchers

avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar

Forkers

agowdamsft rajaprabus27 ckittel isabella232 mdrakiburrahman rukasakurai magrande mirsci olkroshk yachoukh xiangyut qiyuangong romankarpov rahulnz deklareddotcom pkhandavilli vinfnet saketmicrosoft jason-jiankai mcancillo alvaradojl huangyingting nikawang

confidential-container-samples's Issues

Scone unresponsive to gain access to their private helm repo

This issue is for a: (mark with an x)

- [ ] bug report -> please search issues before submitting
- [ ] feature request
- [ ] documentation issue or request
- [x] regression (a behavior that used to work and stopped in a new release)

In order to deploy the confidential healthcare with scone sample on Kubernetes, one requires access to the private Scone Helm repo.

As mentioned in https://sconedocs.github.io/helm/, one needs to send the Scone maintainers an email. I requested access to this repo. They replied saying that I should just play with the Scone playground on the Azure marketplace (https://sconedocs.github.io/azure/scone-playground/). This demo is not made with the Scone playground in mind.

To this day, I haven't heard anything back from Scone (despite sending gentle reminders), making this demo not deployable on AKS using their Helm charts.

workarounds

I have gained access to the images, and one can write their own Helm charts (or equivalent). Unfortunately I have no clue on how to correctly configure them, nor do I want to spend time reverse-engineering it.

proposition

Azure confidential computing should push Scone to streamline the access to their private Helm chart repo. Or make the Scone helm repo public.

Or the demo should be adapted to use the relatively easy-to-access Scone playground.

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.