confidential-computing-reading-list.md

• High level introductions:
  • The three levels of confidential computing | Edgeless Systems
    • Edgeless' entire wiki (as well as the docs for several of their OSS products) are highly recommended for additional reading; you might want to start with Use cases
  • Why Should I Trust Your Code? | annotated by JMP (readwise.io)
  • Common-Terminology-for-Confidential-Computing | annotated by JMP (readwise.io)
  • CCC-A-Technical-Analysis-of-Confidential-Computing-v1.3_unlocked | annotated by JMP (readwise.io)
  • Video: Mark Russinovich's Confidential Computing Elevating Cloud Security and Privacy keynote
• Generic technology understanding:
  • What Can You Do with a TPM? | annotated by JMP (readwise.io)
  • Attestation in confidential computing | annotated by JMP (readwise.io)
  • TODO: https://fosdem.org/2025/schedule/event/fosdem-2025-5002-confidential-computing-s-recent-past-emerging-present-and-long-lasting-future/ and https://fosdem.org/2025/events/attachments/fosdem-2025-5002-confidential-computing-s-recent-past-emerging-present-and-long-lasting-future/slides/237828/Confident_fRySvCW.pdf
• Integrating concepts by going hands-on with Azure:
  • Tutorial: Prepare a deployment for a confidential container on Azure Container Instances - Azure Container Instances | Microsoft Learn
  • confidential-computing-cvm-guest-attestation/PlatformGuestAttestation-APIdoc.pdf at main - Azure/confidential-computing-cvm-guest-attestation - GitHub
  • Secure Key Release with Azure Key Vault and Azure Confidential Computing | annotated by JMP (readwise.io)
  • Secure Key Release with Azure Key Vault and application on Confidential VMs with AMD SEV-SNP | Microsoft Learn
• Dive deeper from the Kubernetes (AKS-CC, CoCo) standpoint:
  • Building Trust into OS images for Confidential Containers - Microsoft Community Hub
  • Confidential Containers on Azure with OpenShift: A technical deep dive | annotated by JMP (readwise.io)
• From the AWS standpoint:
  • Attest an Amazon EC2 instance with AMD SEV-SNP - Amazon Elastic Compute Cloud
  • AWS Nitro Enclaves Ecosystem (1) - Chain of trust | Richard's blogs on Cloud Security (richardfan.xyz) (this entire hands-on series, incl. examples on GitHub)
• All blog posts authored by Red Hat's Christophe de Dinechin, including the 6-part series on confidential computing, are highly approachable and recommended
• Additional reading
  • An approachable introduction to SEV-SNP
  • Several parts of the Enarx documentation (the Technical chapters) were good reading for me
  • If an SGX primer is desired, this section of the Gramine docs, but probably more useful to look at some open source Open Enclave examples
  • An interesting technical read: VBS software enclaves on Windows