Skip to main content

Richard Zak

Title: Enarx & Steward Attestation Author: Richard Zak
Date: March 28, 2024

A discussion on how Enarx and Steward use Certificate Signing Requests (CSRs) to provide remote attestation of a Keep. Steward is a Confidential Computing-aware Certificate Authority which signs CSRs if and only if all attestation checks are successfully validated. This way, the signed certificate, which is part of the Steward CA certificate chain, becomes a token for third parties to ensure that an application secured with Enarx really is secured.

Source: EuroProofNet 2024 Working Group 3

Link: https://europroofnet.github.io/wg3-dresden24/

PDF: Enarx_Steward_Attestation_EuroProofNet24.pdf

Mike Bursell

There’s been a flurry of articles over the past few weeks about WebAssembly (often shortened to Wasm) and its future in cloud Computing. This may come as something of a surprise to those who know Wasm only in its initial incarnation, which was as a browser technology, or its second main use case, which is as a gaming technology. Both of these uses are flourishing, but there’s a third, which is as a server technology.

Source: Profian's Blog

Link: https://profian.com/predictions-for-powerful-webassembly-in-2023/

Mike Bursell

If you are keeping up with the latest technology in cloud computing-related security, you have probably seen that several Cloud Service Providers (CSPs) have announced “confidential VMs” as part of their Confidential Computing offering. So, what exactly is a confidential VM? How does this compare to Confidential Computing? And why are cloud providers offering this?

Source: Profian's Blog

Link: https://profian.com/what-are-confidential-vms/

PDF: Enarx and Confidential VMs Compared.pdf

Mike Bursell

If you’re interested in Confidential Computing to encrypt data and applications in use, then you must be interested in attestation, because, without it, you’re not doing Confidential Computing right. Specifically, without attestation, you really don’t have the documented assurance you need to satisfy regulators (or your boss, for that matter) that you’ve done all you could to protect the sensitive data belonging to your organization, partners, citizens or customers. In this blog post, we will run through why attestation is a necessity for Confidential Computing, and make the argument that doing attestation remotely is the way to go for the highest level of security.

Source: Profian's Blog

Link: https://profian.com/remote-attestation-a-confidential-computing-best-practice-necessity/

Nick Vidal

Currently there are several WASI proposals that are being developed. The State of WebAssembly survey provides a comprehensive overview of the existing WASI proposals and which ones the community are most interested in. There is a lot of interest in I/O, sockets, filesystem, and threads. The Enarx project in particular is investing in advancing WASI support in the Rust language, and we have contributed upstream to sockets, threads, and crypto.

Source: Enarx's Blog

Link: https://blog.enarx.dev/language-support-for-wasi-2/