Welcome to Confidential Computing Zoo’s documentation!¶
Confidential Computing Zoo (CCZoo) is a collection of code-ready reference solutions, which can be used as a copy-paste developer guide, demonstrating how to apply modern security technologies to real-life cloud business scenarios, in order to facilitate the developers to build their own end-to-end Confidential Computing solutions more easily. Some of the solutions are also validated on the public cloud services, such as Alibaba Cloud, AWS, Azure, etc.
The concerned modern security technologies are (but not limited to): TEE (Trusted Execution Environment, such as Intel® SGX and TDX), HE (Homomorphic Encryption) and its hardware accelerations, Remote Attestation, LibOS, cryptographic and its hardware accelerations. The concerned business scenarios are (but not limited to): cloud native AI inference, vertical and horizontal federated learning, big data analytics, key management, RPC (Remote Process Call, such as gRPC), etc.
CCZoo maintains a live table, as below, to indicate the correlations between business usages (rows) and security technologies (columns). Each hyperlink will direct you to the document section that explains the corresponding details and then guides you to the source codes. Enjoy!
CCZoo is a growing project and we have a growing contributor and maintainer community. Please submit issues in this project if there is any question or request. Welcome PRs for contributions.
Table of Contents¶
- TensorFlow Serving Cluster PPML
- Horizontal Federated Learning with Intel SGX Solution
- Vertical Federated Learning
- RA-TLS Enhanced gRPC
- Cross languages framework based on Gramine
- Attestation and Secret Provision Service
- Secure Logistic Regression Inference with HE and Intel SGX
- BigDL Privacy Preserving Machine Learning (PPML)
- Homogenous Logistic Regression Training with Intel Paillier Library and Intel SGX
- Private Set Intersection (PSI) with Intel SGX
- HTTP-Attestable (HTTPA/2)
- Horizontal Federated Learning with Intel TDX
- Horizontal Federated Learning with Intel TDX Confidential Containers
- Encrypted virtual File System with TDX-RA
- Attested Boot with encrypted Intel TDVM OS Image
- Encrypted VFS and TDX-RA Enhanced Tensorflow Serving