SCONE Confidential Computing Environment: Protecting Applications Against Powerful Adversaries (Invited Talk)

Fetzer, Christof

doi:10.4230/LIPIcs.OPODIS.2025.1

Document

SCONE Confidential Computing Environment: Protecting Applications Against Powerful Adversaries (Invited Talk)

Author Christof Fetzer

Part of: Volume: 29th International Conference on Principles of Distributed Systems (OPODIS 2025)
Part of: Series: Leibniz International Proceedings in Informatics (LIPIcs)
Part of: Conference: International Conference on Principles of Distributed Systems (OPODIS)
License: Creative Commons Attribution 4.0 International license
Publication Date: 2026-01-07

PDF

File

PDF

LIPIcs.OPODIS.2025.1.pdf

Filesize: 319 kB
1 pages

Document Identifiers

DOI: 10.4230/LIPIcs.OPODIS.2025.1
URN: urn:nbn:de:0030-drops-251743

Subject Classification

ACM Subject Classification

Security and privacy → Software security engineering
Security and privacy

Keywords

trusted execution environments
security

Metrics

Access Statistics
Total Accesses (updated on a weekly basis)

0

Document

0

Metadata

Abstract

Our objective is to protect the code, data, and keys of applications against all users with access to the computer systems. In some domains (e.g., healthcare domain), this must be guaranteed, even if the application is not entirely correct. To simplify the adoption of confidential computing, SCONE transforms cloud-native applications into confidential cloud-native applications running on vanilla Kubernetes clusters. The applications can run on Intel SGX, Intel TDX, and AMD SEV. In the near future, SCONE will also support confidential GPUs. The confidentiality, integrity, and consistency of an application’s data and keys are guaranteed by always keeping the data encrypted, i.e., at rest, in transit, and in use. This enables us to add a protection layer around applications to prevent data loss caused be bugs and backdoors in the application code.

Cite As Get BibTex

Christof Fetzer. SCONE Confidential Computing Environment: Protecting Applications Against Powerful Adversaries (Invited Talk). In 29th International Conference on Principles of Distributed Systems (OPODIS 2025). Leibniz International Proceedings in Informatics (LIPIcs), Volume 361, p. 1:1, Schloss Dagstuhl – Leibniz-Zentrum für Informatik (2025) https://doi.org/10.4230/LIPIcs.OPODIS.2025.1

Author Details

Christof Fetzer

TU Dresden, Germany

Any Issues?

Feedback on the Current Page

Thanks for your feedback!

Feedback submitted to Dagstuhl Publishing

Could not send message

Please try again later or send an E-mail