Watch Akash Gautam's talk at ContainerDays 2025
CNCF’s confidential containers project brings confidential computing to cloud-native workloads, it does so by providing a hardware vendor-agnostic software stack that builds a trusted execution environment (TEE) for cloud-native applications. One of the prerequisites for achieving confidential computing is having specialized hardware that supports confidential computing which might not be available at everyone’s disposal, to workaround this the confidential containers project provides a way to build TEE on major cloud providers with the help of cloud API adaptor utility, this approach is also known as the “peer pod” approach.
In this session, I will explain the architecture of confidential containers on the bare-metal as well as cloud infrastructure, discuss the workflow and various operations like attestation, key management etc which are performed for deploying and running confidential applications & conclude with a demo of confidential containers using the peer pod approach.
Speaker: Akash Gautam, Consultant at Kubermatic
