Giters

AjanZhong / enarx

Tools for deploying WebAssembly into Enarx Keeps.

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

Enarx

Introduction

Enarx is an application deployment system enabling applications to run within Trusted Execution Environments (TEEs) without rewriting for particular platforms or SDKs. It handles attestation and delivery into a run-time “Keep” based on WebAssembly, offering developers a wide range of language choices for implementation. Enarx is CPU-architecture independent, enabling the same application code to be deployed across multiple targets, abstracting issues such as cross-compilation and differing attestation mechanisms between hardware vendors. Work is currently underway on AMD SEV and Intel SGX.

We've known for a long time that we need encryption for data at rest and in transit: Enarx helps you do encryption for data as well as algorithms in use.

Read more

Project aim

Create a way to create and run "private, fungible, serverless" applications using Trusted Execution Environments (TEEs). In other words, to provide a platform abstraction for TEEs.

They should:

  • be confidential from the host and other workloads;
  • be able to run on
    • multiple silicon architectures;
    • multiple server types;
    • public cloud or private cloud;
  • employ serverless deployment and execution mechanisms.

The mechanism itself should be capable of being FIPS-certified.

Getting Started

For more information, please try our wiki, which includes further details on how to get more information. It's also where we plan to keep up-to-date project information.

Ready to dive in? Learn how to contribute on the wiki.

Building the various components of Enarx is currently complex: we are working on this. Please contact us for help.

(2020-01-01) It is also worth mentioning that it isn't yet possible to run Enarx. We're working hard on it and we'd love people to work with us. We hope to be adding more information very soon, to allow you to get started.

Authors

See the list of people who participate in this project.

License

This project is licensed under the Apache 2.0 license - see the LICENSE file for details

Sponsors

Enarx would not be possible without the support of its sponsors. Many thanks to all who contribute to the long term succes of this project!

Confidential Computing Consortium

Enarx is a software project in the Confidential Computing Consortium, a project community at the Linux Foundation dedicated to defining and accelerating the adoption of confidential computing.

Red Hat

Red Hat employs many of the engineers who work on this project.

Packet

Packet currently provides development and testing infrastructure to the Enarx project from their easy to use bare-metal cloud.

About

Tools for deploying WebAssembly into Enarx Keeps.

License:Apache License 2.0

Languages

Language:Rust 91.7%Language:Assembly 4.4%Language:Python 2.3%Language:Shell 0.8%Language:Dockerfile 0.3%Language:C 0.3%Language:WebAssembly 0.2%