Linux* Stacks for Intel® Software Guard Extensions (Intel® SGX)
Provide fully automated deployment through Ansible* playbooks and roles using Linux* Stacks for Intel® SGX on 3rd generation Intel® Xeon® Scalable processors. The project includes Linux container and virtualization stacks to support bare metal and cloud use cases.
This kernel-based virtual machine (KVM) runs an Intel SGX enclave workload in a guest environment. The libvirt and QEMU components act as the orchestrator. Get automated deployment of virtualization stacks through Ansible playbooks and roles.
Use a container-based Kubernetes* environment to run an Intel SGX enclave workload in a container. (Kubernetes is the orchestrator for the Intel SGX device plug-in.) The containers stack is deployable on bare metal and in a VM.
Note The stacks are only implemented for CentOS versions 8.2 and 8.3.