Continuum AI is now public. Try out the most secure GenAI service!
MarbleRun
MarbleRun takes care of remote attestation, key management, and many other core tasks in a cluster of Intel SGX enclaves. Think "service mesh for enclaves."
MarbleRun securely manages keys for your enclaves, provisions secrets, sets up mTLS connections, and enables secure recovery.
MarbleRun provides one succinct attestation statement for your deployment, proving that your deployment adheres to a given manifest.
MarbleRun can be installed on any SGX-enabled Kubernetes or used standalone. It supports enclaves built with Gramine, EGo, or Occlum.
Build your confidential microservices with EGo, distribute them
with Kubernetes on an SGX-enabled cluster, and let MarbleRun
take care of the rest. Deploy end-to-end secure and verifiable AI
pipelines or crunch on sensitive big data in the cloud.
Getting MarbleRun up and running only requires a handful of steps.
Tip: MarbleRun works great on SGX-enabled AKS on Azure.
Bosch set up a highly scalable AI pipeline on Microsoft Azure that provides encryption in key parts of the video and image processing mechanism. Everything is done respecting European regulations and privacy, with no loss to analysis capabilities, and at a reasonable cost, thanks to the flexibility of a public cloud.
MarbleRun is a tool for experts who aim to minimize the trusted computing base and do not shy away from adapting apps and writing app-specific manifests.
If your goal is to shield the entire Kubernetes cluster with zero changes, our product Constellation is the better choice.