Confidential Computing Developer Summit 2021: Full Schedule

View More Details & Registration Information

8:00am PDT

Welcome

Aeva and Felix will welcome attendees to the inaugural Confidential Computing Developer Summit and share some brief updates over a cup of coffee.

Speakers

Felix Schuster

CEO, Edgeless Systems GmbH

Felix Schuster is an academic turned startup founder. After his PhD in computer security, he joined Microsoft Research to work four years on the foundations of Azure Confidential Computing, before co-founding Edgeless Systems. The startup’s vision is to build an open-source stack... Read More →

Aeva Black

Open Source Hacker, Azure Office of the CTO, Microsoft

Once described as "an ancient and powerful open source dragon," Aeva Black is a dot-com veteran, an open source hacker, and a queer and non-binary geek. They work in the Azure Office of the CTO to improve the state of open source software supply chain security, and to support teams... Read More →

Friday June 11, 2021 8:00am - 8:10am PDT
Virtual Experience

Main Stage Session, Keynote

8:10am PDT

The Foundations of Community

Nothing you do matters unless people are involved. But the most important part of creating open source communities is your mindset as a maintainer and leader: understanding why community building, contributor on-ramping, and communication sets the stage for project success. This talk, delivered by seasoned CNCF open source community members Kat Cosgrove and Celeste Horgan, goes over actionable ways to attract and build a robust, active developer community around your open source project, and the mindset you need to develop to do so.

Speakers

Celeste Horgan

Senior Technical Writer, CNCF, CNCF

Celeste is a Senior Technical Writer at CNCF. She provides technical writing and design support for cloud native projects across the organization. In her spare time, she’d prefer to be staring out of coffee shop windows, latte in hand, pondering the mysteries of the universe. She... Read More →

Kat Cosgrove

Developer Advocate, Independent

Kat Cosgrove is a Developer Advocate, a CNCF Ambassador, and an actual cyborg. Her professional background has run the gamut from bartender, to video store clerk, to teacher, to software developer. Her specialty is approachable 101-level content for junior developers or anyone else... Read More →

Friday June 11, 2021 8:10am - 8:25am PDT
Virtual Experience

Main Stage Session, Keynote

8:25am PDT

Tools Introduction, Landing Pages & Stickies!

Felix and Aeva will introduce attendees to using online collaboration tools to collectively craft the day's unconference session schedule.

Speakers

Felix Schuster

CEO, Edgeless Systems GmbH

Aeva Black

Open Source Hacker, Azure Office of the CTO, Microsoft

Friday June 11, 2021 8:25am - 8:40am PDT
Virtual Experience

Main Stage Session, Keynote

8:40am PDT

Collaborative Schedule Building Session

At the start of this session, the unconference agenda will be blank. By the end of it, the agenda will be full.

You -- yes, YOU! -- get to build that! So come prepared with ideas to pitch, discussion topics, and a list of projects you're interested in learning about.

Speakers

Felix Schuster

CEO, Edgeless Systems GmbH

Aeva Black

Open Source Hacker, Azure Office of the CTO, Microsoft

Friday June 11, 2021 8:40am - 9:00am PDT
Virtual Experience

Main Stage Session, Keynote

9:00am PDT

Coffee Break

Friday June 11, 2021 9:00am - 9:15am PDT
Virtual Experience

Break

9:15am PDT

A Series of Lightning Talks from CNCF Project Leads

There’s considerable interest to leverage TEE capabilities from cloud-native projects, such as SPIFFE, Notary, Sigstore and Parsec, which each address separate concerns within the CNCF. In this talk, leaders from these projects will describe how they use hardware-based trust today to enhance cloud native workloads, and ways that we can improve security with new capabilities enabled by TEE’s in the future. This session will be moderated by Aeva Black.

Talks to be included:

sigstore, Software Signing for the Masses, presented by Luke Hinds: sigstore is a new project launched under the Linux Foundation to provide a free to use, non profit code signing service. Project founder Luke Hinds will provide an introduction to the project.

Keylime, trusted compute for cloud, edge and IoT, presented by Michael Peters: Micheal Peters the project lead for Keylime, will provide an introduction to the project and its main features.

Parsec, presented by Paul Howard: Paul will provide an overview of Parsec, the Platform Abstraction for Security. Parsec is providing a cloud-native developer experience for hardware security, creating portable APIs that can be consumed in any programming language. Parsec is part of the CNCF Sandbox. In this talk, you will learn about the project and its possible applications in confidential computing.

SPIFFE, A Universal Identity Control Plane, presented by Andres Vega: Strongly attested cryptographic identities can play a critical role in ensuring confidentiality at every level of the stack.
Andres Vega will provide an introduction and overview of the SPIFFE project, and point out areas of opportunity as it relates to confidential computing.

Speakers

Luke Hinds

Senior Principal Software Engineer, Red Hat

Luke Hinds works within the Emerging Technologies group in Red Hat's CTO office, where he leads a team working on open source security. Luke started the project sigstore, alongside many other OSS security projects. He has held numerous OSS community leadership roles, such as the Kubernetes... Read More →

Andres Vega

Vice President of Operations, ControlPlane

Andrés Vega is Vice President of Operations at ControlPlane focused on securing modern applications from supply-chain and runtime attacks with a zero trust, continuous security approach He is also an open source maintainer, contributor, and author.

Michael Peters

Principal Engineer, Red Hat

Michael Peters is a Principal Engineer in Emerging Technologies in Red Hat's Office of the CTO. He is a senior systems engineer and programmer with an emphasis on DevOps, Security, and Operability and is one of the current maintainers of the Keylime project. His experience in both... Read More →

Aeva Black

Open Source Hacker, Azure Office of the CTO, Microsoft

Paul Howard

Principal System Solutions Architect, Arm

Paul Howard is a Principal System Solutions Architect in the Architecture and Technology group at Arm, based in Cambridge, UK. Paul joined Arm in 2018 from a software engineering background. His focus at Arm is on better-together stories for hardware and software across cloud, edge... Read More →

Parsec ConfidentialComputeSummit June2021 pdf

Friday June 11, 2021 9:15am - 10:05am PDT
Virtual Experience

Main Stage Session

9:15am PDT

Attestation Unconference Session: Introduction to Attestation Use Cases

Friday June 11, 2021 9:15am - 10:05am PDT
Virtual Experience

Unconference Session, Attestation

9:15am PDT

Cloud Native Unconference Session: Confidential Computing and FaS

Friday June 11, 2021 9:15am - 10:05am PDT
Virtual Experience

Unconference Session, Cloud Native

9:15am PDT

Dev Models (SDK v. Runtime v. VMM) Unconference Session: Perfect vs. Good Enough

Friday June 11, 2021 9:15am - 10:05am PDT
Virtual Experience

Unconference Session, Dev Models (SDK v. Runtime v. VMM)

10:05am PDT

Real-world Confidential Computing in FinTech

In this talk, Shoumeng will share their real experiences of using confidential computing. He will present the usages that confidential computing can help, the challenges they were facing, and the solutions they found.

Speakers

Shoumeng Yan

Director of Confidential Computing, Ant Group

Shoumeng Yan is the director of confidential computing of Ant Group.

Friday June 11, 2021 10:05am - 10:25am PDT
Virtual Experience

Main Stage Session

10:10am PDT

Attestation Unconference Session: Attestation Verifiers

Friday June 11, 2021 10:10am - 10:55am PDT
Virtual Experience

Unconference Session, Attestation

10:10am PDT

Cloud Native Unconference Session: EGo: Confidential Microservices with Go

Friday June 11, 2021 10:10am - 10:55am PDT
Virtual Experience

Unconference Session, Cloud Native

10:10am PDT

Dev Models (SDK v. Runtime v. VMM) Unconference Session: Mystikos

Friday June 11, 2021 10:10am - 10:55am PDT
Virtual Experience

Unconference Session, Dev Models (SDK v. Runtime v. VMM)

10:30am PDT

Start Your Enclaves – Building Blocks for Setting up SGX Aware Kubernetes Clusters

In order to run Intel SGX hardened confidential computing applications in Kubernetes, the cluster needs to be set up correctly. This talk focuses on what is needed under the hood for Kubernetes orchestrated containers to be able create SGX enclaves and attest that they run in a trusted environment.

We are going to start with topics that cluster administrators need to take into account when creating SGX aware clusters that potentially share multiple simultaneous users and then move to talk about what are the Kubernetes building blocks needed.

Finally, we briefly discuss the existing shortcomings with SGX in Kubernetes, share ideas what to improve and open the line for conversation!

Speakers

Mikko Yinen

Cloud Software Architect, Intel

Mikko Ylinen is a cloud and edge software architect at Intel’s Cloud Software open source team. He comes with an embedded linux and operating systems engineering background but has most recently worked on security and confidential computing related topics in containers and cloud... Read More →

Friday June 11, 2021 10:30am - 10:55am PDT
Virtual Experience

Main Stage Session

11:00am PDT

Breakout Readouts

Speakers

Karen Chu

Community PM, Microsoft

Karen Chu is a Community PM on the Microsoft Azure Container Compute Upstream team with a focus on open source tools such as Helm, CNAB, Brigade, CNAB, and more. She is a CNCF Ambassador, meet-up organizer, and conference organizer. She has also worked The Illustrated Children’s... Read More →

Jorge Castro

Community Manager, VMware

Jorge works at VMware as a dedicated community manager for Kubernetes. You can find him in SIG Contributor Experience, where he is currently working on a slew of projects. If you're looking to get started contributing please introduce yourself!

Aeva Black

Open Source Hacker, Azure Office of the CTO, Microsoft

Felix Schuster

CEO, Edgeless Systems GmbH

Bob Killen

Program Manager, Google

Bob is a Program Manager at the Google Open Source Programs Office with a focus on Cloud Native computing. He serves the Kubernetes project as a member of the Kubernetes Steering Committee, a chair of the Contributor Experience SIG and has been involved in many other cross-cutting... Read More →

Friday June 11, 2021 11:00am - 11:15am PDT
Virtual Experience

Main Stage Session

11:15am PDT

Lunch Break & Social Time

Speakers

Karen Chu

Community PM, Microsoft

Jorge Castro

Community Manager, VMware

Aeva Black

Open Source Hacker, Azure Office of the CTO, Microsoft

Felix Schuster

CEO, Edgeless Systems GmbH

Bob Killen

Program Manager, Google

Friday June 11, 2021 11:15am - 12:00pm PDT
Virtual Experience

Main Stage Session

12:05pm PDT

Confidential Containers in Public Clouds with TDX

We will provide a brief overview of Intel TDX – the threat model protected against, and the mitigations in the HW & system architecture -- as well as discuss how to build confidential containers using TDX, how TDX enables container workloads and what orchestration changes are expected. This session will close with long-term view of additional capabilities on the radar, such as workload migration, using IO with Containers in TDX, and more.

Speakers

Ravi Sahita

Security Architect (Sr. PE), Intel

Ravi Sahita is a Senior Principal Engineer at Intel in the Data Platforms Group. He has 20 years of experience in computer security, hardware virtualization, systems and platform software, CPU ISA and applying machine learning for security. His current focus is on architecture development... Read More →

Samuel Ortiz

Principal Engineer, Intel

Samuel works as a software engineer for Intel, where he spends his time playing with containers, virtual machines, hypervisors and orchestrators.

Friday June 11, 2021 12:05pm - 12:30pm PDT
Virtual Experience

Main Stage Session

12:05pm PDT

Attestation Unconference Session: Attestation Results for Secure Interactions

Friday June 11, 2021 12:05pm - 12:55pm PDT
Virtual Experience

Unconference Session, Attestation

12:05pm PDT

Cloud Native Unconference Session: Attestation Protocol in AMD SEV

Friday June 11, 2021 12:05pm - 12:55pm PDT
Virtual Experience

Unconference Session, Cloud Native

12:05pm PDT

Dev Models (SDK v. Runtime v. VMM) Unconference Session: Reusable, generic TLS-endpoint in Enclave

Friday June 11, 2021 12:05pm - 12:55pm PDT
Virtual Experience

Unconference Session, Dev Models (SDK v. Runtime v. VMM)

12:35pm PDT

Introducing the CCC End-User Advisory Council

We will introduce the new CCC End-User Advisory Council and discuss how developers working with CCC projects can contribute to its work.

Speakers

Richard Searle

Customer Solutions Director, Fortanix

Dr Richard Searle is Customer Solutions Director at Fortanix. He gained a Doctorate in Business Administration from Henley Business School by developing a formal model of perceptual change and has had an extensive career in systems engineering, including work in the fields of natural... Read More →

Introducing the CCC End User Advisory Council pdf

Friday June 11, 2021 12:35pm - 12:55pm PDT
Virtual Experience

Main Stage Session

1:00pm PDT

Confidential Virtual Machines with SEV and SNP

This talk will provide and overview about the SEV building blocks and how they stack on each other to minimize the trusted interface between Hypervisors and confidential Virtual Machines. The current state of SEV support in Linux will be discussed as well as some details of the current implementation in the Linux kernel. The talk will close with a look onto the SEV-SNP enablement roadmap and briefly summarize what we are currently working on.

Speakers