enclaive-docker-mariadb-sgx
edgelessdb
enclaive-docker-mariadb-sgx | edgelessdb | |
---|---|---|
3 | 3 | |
7 | 169 | |
- | 0.0% | |
0.0 | 1.6 | |
12 months ago | about 1 year ago | |
Dockerfile | Go | |
- | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
enclaive-docker-mariadb-sgx
edgelessdb
-
What is your opinion on Confidential computing?
There's some existing work by https://www.edgeless.systems/products/edgelessdb/ and their repo https://github.com/edgelesssys/edgelessdb
-
Microsoft Introduces EdgelessDB: A Database Designed for Confidential Computing
The title is a bit misleading: EdgelessDB was not developed by Microsoft but by a German startup (Edgeless Systems, https://www.edgeless.systems/ and https://github.com/edgelesssys/edgelessdb).
The announcement is about its availability on the Azure Marketplace.
-
We built an open-source SQL DB for Intel SGX enclaves
Hi everyone! Our team just released EdgelessDB, an open-source database built on MariaDB that runs completely inside Intel SGX enclaves. As storage engine, it uses RocksDB with a custom encryption engine. The engine uses AES-GCM and is optimized for RocksDB’s specific SST file layout and the enclave environment. It has some nice properties like global confidentiality and verifiability and it considers strong attackers like malicious admins or rootkits. It also delivers rather low overheads (<10% for the TPC-C benchmark on Azure). In short: all data is only ever decrypted inside the enclave. This is different from other databases, where data and corresponding keys are processed in the clear in memory. We believe this is useful because (1) it’s very secure and (2) it enables some interesting use cases, like secure data pooling between parties. If you’re interested in trying it out: here’s a quickstart guide. In essence, you can run the Docker image with a single command on any recent Intel Xeon with SGX. Code and more info can be found on GitHub. Would be great to get your feedback on this :-)
What are some alternatives?
enclaive-docker-mosquitto-sgx - SGX-ready Enclaive Docker Image for Eclipse Mosquitto
MariaDB - MariaDB server is a community developed fork of MySQL server. Started by core members of the original MySQL team, MariaDB actively works with outside developers to deliver the most featureful, stable, and sanely licensed open SQL server in the industry.
privado - Open Source Static Scanning tool to detect data flows in your code, find data security vulnerabilities & generate accurate Play Store Data Safety Report.
confidential-computing-zoo - Confidential Computing Zoo provides confidential computing solutions based on Intel SGX, TDX, HEXL, etc. technologies.
docker-mariadb - Dockerized database server with integrated monitoring
migrate - Database migrations. CLI and Golang library.
enclaive-docker-nginx-sgx - SGX-ready Enclaive Docker Image for Nginx
marblerun - MarbleRun is the control plane for confidential computing. Deploy, scale, and verify your confidential microservices on vanilla Kubernetes. 100% Go, 100% cloud native, 100% confidential.
enclaive-docker-hashicorp-vault-sgx - In-memory encrypted Hashicorp Key Vault with Intel SGXv2 enclave technology and attestation plugin
RocksDB - A library that provides an embeddable, persistent key-value store for fast storage.
local-docker-db - A bunch o' Docker Compose files used to quickly spin up local databases.
mysql-5.6 - Facebook's branch of the Oracle MySQL database. This includes MyRocks.