Trusted Execution Environments (TEEs) use specialized hardware and software to provide stronger confidentiality and integrity guarantees than what is afforded by traditional computing systems. For this reason, curious developers often want to explore TEE technology for securing sensitive workloads, but find themselves overwhelmed by steep learning curves and complicated requirements. The Bearclave project is a collection of code and documentation that aims to address these challenges.
- Breakdowns of TEE concepts and platforms, including AWS Nitro Enclaves, AMD SEV-SNP, and Intel TDX.
- Guides on building and deploying TEE-based applications to AWS and GCP.
- Modules for developing platform-agnostic Golang TEE applications.
- Examples demonstrating how to write, build, and deploy real-world TEE-based applications.
Running cloud-based TEE applications is not free. AWS and GCP TEE compute instances typically cost between $0.20 to $0.50 per hour. Fortunately, Bearclave provides a NoTEE mode that allows you to develop and test applications locally. By limiting your cloud usage with NoTEE you should be able to prototype and test TEE applications for just a few dollars a month.
- Bearclave an SDK for developing TEE-based applications in Go.
- Bearclave Examples a collection of TEE-based applications demonstrating how to use the Bearclave SDK.
- Bearclave TF a collection of Terraform modules for deploying Bearclave applications to AWS and GCP.
- Bearclave Smart Contracts a (soon-to-be) collection of TEE-related blockchain smart contracts.
- Bearclave zkVM a (soon-to-be) collection of Rust crates for verifying TEE attestations in Zero-Knowledge Proof Virtual Machines (zkVMs).
- PluckMD a handy tool for inserting code into Markdown documents.