asterinas/asterinas-cc

Asterinas Confidential Computing is a collection of open-source projects featuring full-stack capabilities in confidential computing.

简体中文｜English

Welcome to Asterinas Confidential Computing (Asterinas-CC). Asterinas Confidential Computing is a collection of open-source projects featuring full-stack capabilities in confidential computing. Our goal is to provide users with powerful and flexible solutions for confidential and privacy-preserving computing, ensuring the security and privacy of data during processing.

Introduction

The Asterinas Confidential Computing builds a complete confidential computing ecosystem based on three core open source projects: HyperEnclave, Occlum, and TrustFlow.

HyperEnclave is an open, cross-platform Trusted Execution Environment (TEE) that provides a hardware-level protected and isolated computing environment while decoupling its root of trust from the CPU vendor.

Occlum is a lightweight TEE operating system that supports multiple mainstream programming languages and file systems, enabling confidential computing applications to easily leverage existing development skills and resources.

TrustFlow focuses on constructing a trusted data flow and computing framework, ensuring the security and privacy of data during its transfer.

These components work together to create a full-stack solution that spans from underlying hardware support to upper-layer applications, meeting the confidential and privacy computing needs across various scenarios.

Key Features

• Full Stack Coverage: From low-level hardware abstraction to high-level application interfaces, Asterinas Confidential Computing provides developers with an end-to-end security solution.

• Cross-Platform Support: Compatible with various CPU hardware platforms, ensuring that your application workloads can run securely on all major CPU platforms.

• Ease of Use: Offers rich data processing capabilities, allowing for the full extraction of data value while protecting data privacy.

• Advanced Technology: Utilizes cutting-edge security isolation techniques to provide trusted security features.

• Open Ecosystem: Embraces open-source, encourages community contributions, and collaborates to drive the development and practical application of confidential computing technology.

Projects

• HyperEnclave

  • https://github.com/asterinas/hyperenclave

  • https://github.com/asterinas/hyperenclave-driver

• Occlum

  • https://github.com/asterinas/occlum

• TrustFlow

  • https://github.com/asterinas/trustflow

  • https://github.com/asterinas/trustflow-capsule-manager

  • https://github.com/asterinas/trustflow-capsule-manager-sdk

  • https://github.com/asterinas/trustflow-teeapps