MarbleRun makes it easy to deploy, scale, and verify SGX-based apps on Kubernetes. It runs alongside your favorite service mesh and takes care of all things confidential computing. It’s open source, written in Go, and truly cloud native.
All services run in secure enclaves; your data and code are encrypted even at runtime. Between enclaves, data is transmitted via mTLS.
Get cryptographic proof that the topology of your cluster adheres to a manifest defined in simple JSON.
MarbleRun is written in Go and uses standards like gRPC and HTTP REST. It scales and secures your apps in any cloud that has Intel SGX - like Azure.
Usability and simplicity (and security of course!) are our guiding principles. Porting and deploying existing distributed Go apps only takes a few simple steps.
We show you how to easily get started with data-centric confidential computing applications by leveraging EdgelessDB and MarbleRun.
We demonstrate how a multi-stakeholder scenario can be organized with MarbleRun through a common manifest.
We give intro to the service mesh concept and discuss crucial properties in the context of confidential computing.
We describe key features and the architecture of MarbleRun.
We give an intro to MarbleRun’s support for Graphene-based applications.
We give an intro to MarbleRun’s support for Occlum-based applications.