TL; DR:现在,您可以在Google的机密VM上运行Kubernetes 。
Google (08.09.2020, . ) Cloud Next OnAir .
Confidential GKE , Kubernetes. Confidential VMs, .
Confidential Computing — , . , . , .
Confidential Computing Google Confidential Computing, « » (Trusted Execution Environments, TEEs). TEE — , — , .
Confidential VMs Google N2D, EPYC AMD, Secure Encrypted Virtualization, , . , : , , . , , .
beta- Confidential GKE, , Google, 1.18 Google Kubernetes Engine (GKE). GKE — , , , . Kubernetes — , .
Confidential GKE GKE. Confidential Computing
. Confidential GKE Google , Confidential VMs, , AMD EPYC. j SEV AMD, , , , .
Sunil Potti Eyal Manor, , Google
Confidential GKE GKE , Confidential VMs. — , , .
, , , . Google Cloud Confidential Computing , GKE. Kubernetes — , .
Holger Mueller, Constellation Research.
N.B. 28-30 Kubernetes , Kubernetes, . 14–16 Kubernetes Kubernetes, Kubernetes «». Kubernetes production-ready («the-not-so-easy-way»), .
Google , Confidential VMs , . , AMD Secure Processor, Confidential VMs.
, Google . Google Confidential VMs .
VPC firewall , Confidential VMs Confidential VMs, . VPC Service Controls GCP Confidential VMs.
Sunil Potti Eyal Manor