Mustafa Çağrı ÇALIŞKAN

The public preview of confidential containers on Azure Kubernetes Service (AKS) now allows for running individual pods in their own trusted execution environment (TEE) with hardware-based confidentiality and integrity protections for container workloads. This new SKU offers the ability to lift and shift workloads to a confidential environment without dependencies on confidential computing libraries. Additionally, it provides in-memory encryption of data with a hardware-based dedicated key per container group, support for remote attestation, and an agent to validate the authenticity of hardware and application components. This feature is particularly beneficial for workloads processing highly sensitive data. For more information, refer to the blog announcement.

Source link