Constellation, a Kubernetes distribution to provide full end-to-end encryption with Confidential Computing - Moritz Eckert from Edgeless Systems
Cloud CommuteMarch 07, 2024x
3
00:23:2821.49 MB

Constellation, a Kubernetes distribution to provide full end-to-end encryption with Confidential Computing - Moritz Eckert from Edgeless Systems

In this episode, host Chris Engelbert welcomes Moritz Eckert from Edgeless Systems, a company specializing in confidential computing technologies. Moritz shares his background in computer security and his journey into co-founding Edgeless Systems. He dives deep into the concept of confidential computing, explaining its hardware-based approach to encrypt memory at runtime and perform remote attestation to ensure the integrity of the computing environment.

Moritz discusses how Edgeless Systems' flagship product, Constellation, provides an "always encrypted" Kubernetes distribution, allowing data to remain encrypted throughout its lifecycle—from network transit to processing and storage. This ensures maximum security, especially for cloud-native applications, by leveraging hardware features available on modern CPUs.

They explore the practical implications for application developers, emphasizing that the goal is to make the underlying security features invisible to developers, requiring no significant changes to their existing workflows. The conversation also touches on the current landscape of confidential computing hardware, the support from major cloud providers, and the potential for confidential computing in AI and machine learning contexts, particularly with GPUs.

The conference Moritz mentioned during the show: OC3 - Open Confidential Computing Conference - https://www.oc3.dev/

For questions, you can reach Moritz at:

You can learn more about Edgeless Systems at:

The Cloud Commute Podcast is presented by simplyblock (https://www.simplyblock.io)