User Tools

Site Tools


EBSIS Scientific Seminar

SCONE: Secure Container Technology & Secrets Management​ - Tutorial within EDCC 2018 conference
André Martin (TU Dresden)

  • Tuesday, 11 November 2018, 16:00, C3 (Faculty of Computer Science, C Building, UAIC)—map


The main aim of SCONE is to make securing your application and secrets as easy as possible using modern Trusted Execution environments. Switching to SCONE is simple since applications do not need to be modified. Moreover, we provide a tight integration with Docker Swarm and in the near future with Kubernetes. SCONE provides applications with secrets in a secure fashion:

  • secure configuration files and transparent injections of secrets
  • secure environment variables
  • secure command line arguments

SCONE provides a local attestation and configuration service: this service provides only the code with the correct signature (hash of code and data) with its secrets. SCONE helps to protect applications against:

  • adversaries - even those who have already gained root access,
  • the operating system - even if compromised,
  • the hypervisor - even if compromised, and
  • the cloud provider, and
  • evil maids - despite having physical access to the host.

In this tutorial, we provide hands on examples on how to use SCONE.

Speaker Bio

André Martin is a post-doctoral researcher at the Systems Engineering Group at TU Dresden, Germany since January 2016. He holds a PhD (2015) and a Diploma (2008) in Computer Science both from the Technical University of Dresden. His research interests is in distributed systems and cloud computing with a focus in large scale data processing systems and fault tolerance.

Back to EBSIS Events section.