Constellation is a cloud-based confidential orchestration platform.
📄️ Cluster orchestration
You can use the CLI to create a cluster on the supported cloud platforms.
📄️ Versions and support
All components of Constellation use a three-digit version number of the form v...
Constellation takes care of bootstrapping and initializing a Confidential Kubernetes cluster.
This page explains Constellation's attestation process and highlights the cornerstones of its trust model.
Constellation uses Fedora CoreOS as the operating system running inside confidential VMs. This Linux distribution is optimized for containers and is designed to have an immutable filesystem.
📄️ Keys and cryptographic primitives
Constellation protects and isolates your cluster and workloads.
📄️ Encrypted persistent storage
Confidential VMs provide runtime memory encryption to protect data in use.
Constellation encrypts all pod communication using the container network interface (CNI).