Home
Welcome to the confidential-cloud-native-primitives wiki! In this wiki, it demonstrates architecture of Confidential Cloud Native Primitives (CCNP).
CCNP includes several micro-services as BaaS(Backend as a Service) to provides cloud native measurement, then exposes CC trusted API via cloud native SDK:
-
Services are designed to hide the complexity of different TEE platforms and provides common interfaces and scalability for cloud-native environment to address the fetching the fetching of quote, measurement and event log.
-
SDK is provided to simplify the use of the service interface for development, it covers communication to the service and parses the results from the services. With such SDK, users can perform related actions with one simple API call.
-
A
CCNPdevice plugin is provided as the dependency for services such as Quote Server and Measurement Server. It will help with device mount and folder injection within the service.
From the perspective of tenant's workload, CCNP will expose the CC Trusted API as the unified interfaces across diverse trusted foundations like RTMR+TDMR+CCEL and PCR+TPM2. The definitions and structures follow standard specifications like
TCG PC Client Platform TPM Profile Specification,
TCG PC Client Platform Firmware Profile Specification