nitrogen
enclaver
nitrogen | enclaver | |
---|---|---|
6 | 8 | |
76 | 119 | |
- | 4.2% | |
2.5 | 8.1 | |
10 months ago | 4 months ago | |
Rust | Rust | |
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
nitrogen
-
Releasing Rust Binaries with GitHub Actions - Part 2
Check out the full implementation here.
-
Releasing Rust Binaries with GitHub Actions - Part 1
Thanks for reading! Don't forget to check back for Part 2 coming soon. If Nitrogen sounds cool to you check it out and give it a star here, and come see what's going on on Discord.
-
TLS with Nitrogen
I was recently reminded about the tool mkcert and it inspired me to add a TLS example to the Nitrogen. mkcert makes its incredibly easy to test TLS with your application during local development. Its very important to note that the TLS certificates generated by mkcert should only be used for development and never production applications.
-
What would you like to experiment with in confidential computing?
Checkout out the README!
- Show HN: Nitrogen, quickly deploy web services to AWS Nitro Enclaves
-
Introducing Nitrogen: Deploy Web Servers and Databases to AWS Nitro Enclaves
For now, you can curl -fsSL https://raw.githubusercontent.com/capeprivacy/nitrogen/main/install.sh | sh and start using it. We'd love to hear what you think in the comments below. Please star Nitrogen on GitHub, and come chat on Discord. Thanks!
enclaver
-
PostgreSQL Encryption: The Available Options
If you're looking for the best way to take a container and run it with Nitro, I work on https://github.com/edgebitio/enclaver
Works great with Kubernetes as a DaemonSet or straight on a VM.
-
Ask HN: What Are You Working on This Year?
Building a tool for running secure enclaves called Enclaver (https://github.com/edgebitio/enclaver). There is a big opportunity for keeping data encrypted while running code against it within enclaves.
And a more secure software supply chain is possible with device attestation and cryptographic measurements of software.
-
My company open sourced our tool to mix pods with secure enclaves into a regular EKS cluster
Check out the code on GitHub: https://github.com/edgebitio/enclaver
-
Supabase secrets management available in beta
I'm building the "in-use" part of this right now...what if you could encrypt your data with an encryption key (at-rest), _but also_ to a set of code that is allowed to decrypt it (in-use). If that code is identified cryptographically, its identity can't be spoofed or stolen.
We're exploring secure enclaves as the protected runtime env and the code attestation generation: https://github.com/edgebitio/enclaver
- Enclaver - run code in secure enclaves so it can't be observed by any human (like your iPhone enclave, but on AWS servers instead)
- Show HN: Enclaver – create and run secure enclaves
-
What’s the coolest thing you did this year?
I have been building out an open source project called Enclaver, which allows you to wrap sensitive workloads inside of a secure enclave (the same as your iPhone, but on servers). It's intended for anything you don't want observed, like JWT signers, encryption/decryption, partner integrations using highly privileged API keys, etc.
-
The Security Design of the AWS Nitro System
I found the side channel protection and CPU/L1 isolation between customers to be particularly interesting.
Very cool to see the physical hardware interconnects for resetting the system. Also the PCI bus as one of the isolating boundaries.
I have built an open source project for managing Nitro Enclaves (https://github.com/edgebitio/enclaver), so it is cool to see how these build on this foundation to provide even more protection.
What are some alternatives?
incubator-teaclave-trustzone-sdk - Teaclave TrustZone SDK enables safe, functional, and ergonomic development of trustlets.
salty - Simple Saltstack-like deployment system in 1k lines of Python
aws-nitro-enclaves-sdk-c - This repo provides a C API for AWS Nitro Enclaves, including a KMS SDK that integrates it with attestation.
vault - Extension for storing encrypted secrets in the Vault
mkcert - A simple zero-config tool to make locally trusted development certificates with any names you'd like.
terraform-provider-proxmoxve - Terraform provider for ProxMox Virtual Environment
ring - Safe, fast, small crypto using Rust
bevy - A refreshingly simple data-driven game engine built in Rust
matano - Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
VW_Flash - Flashing tools for VW AG control units over UDS. Compression, encryption, RSA bypass, and checksums are supported for Simos18.1/6/10, DQ250-MQB, DQ381-MQB, and Haldex4Motion-Gen5-MQB.
pgsodium - Modern cryptography for PostgreSQL using libsodium.