The world’s most secure solution for Kubernetes gets open source release, available for everyone on GitHub
Edgeless Systems, a pioneering Confidential Computing company that is turning the public cloud into the safest place for sensitive data, announced the open source release of Constellation, the first Confidential Kubernetes. Constellation allows anyone to keep their Kubernetes clusters verifiably shielded from the underlying cloud infrastructure and encrypted end-to-end. It is available now on GitHub and comes with new unique features such as “whole cluster” attestation.
“Edgeless Systems is building the open source infrastructure for the Confidential Computing revolution,” said Felix Schuster, CEO, Edgeless Systems. “The hardware and features required for Constellation mostly weren’t even available in the cloud 12 months ago, but we started the necessary work to ensure Kubernetes users can secure all their data – in rest, in transit and now in use. By making Constellation available to everyone, we can help accelerate the adoption of more secure cloud computing workloads.”
Latest ITechnology News: Cloudingo and LeanData Announce Technology Partnership to Provide Data Quality and Lead Routing support to Clients
Confidential Computing is a hardware-based technology that shields computer workloads from their environments and keeps data encrypted even during processing, which is a massive requirement as computing spans increasingly diverse environments and enterprises and developers are managing increasing security and compliance concerns. Constellation shields workloads and the control plane from the infrastructure and ensures that all data is encrypted in rest, in transit and in use. These properties can be verified remotely based on hardware-rooted certificates. Constellation works with Microsoft Azure and Google Cloud Platform (support for OpenStack and other CSPs like AWS is planned) and doesn’t require changes to workloads or existing tooling. It is a CNCF-c******** Kubernetes.
Latest ITechnology News: New IBM LinuxONE Servers Help Reduce Energy Consumption as Clients Increasingly Make Sustainability a Business Priority
Edgeless Systems is releasing new features with the open source Constellation, including Sigstore-based attestation of Kubernetes nodes and artifacts, and automatic and config-free encryption of cloud storage and all node-to-node networking. Overall, Constellation provides breakthrough security and data protection for K8s-based workloads by effectively preventing any access from the underlying infrastructure. Not even privileged cloud admins, datacenter employees, or APTs (advanced persistent threats) in the infrastructure can access data inside Constellation at any time. This substantially helps prevent data breaches. It finally allows Kubernetes users to move sensitive workloads to the cloud, reducing costs, and to create more secure SaaS offerings to attract new customers.
“Sigstore enables everyone to protect their software supply-chains. It’s amazing to see how, with Constellation, Edgeless Systems managed to bootstrap an end-to-end verifiable and encrypted Kubernetes on top of this,” said Dan Lorenc, CEO of Chainguard and co-creator of Sigstore.
Latest ITechnology News: Nexar Unveils AI Application that Uses Crowd-Sourced Vision Data to Find Available Street Parking in Tokyo
[To share your insights with us, please write to sghosh@martechseries.com]
