Videos & Talks

• Confidential Computing Overview
• Confidential Computing with Containers
• Confidential VMs Explained
• TEE Security Architecture
• Confidential Computing & AI
• AMD SEV & GPU Security
• Confidential Computing and Containers – CCC
• Confidential Computing Introduction
• Intel SGX Deep Dive
• Azure Confidential Containers
• CCC Webinar Playlist
• IBM Confidential Computing Playlist
• Confidential Computing Fundamentals
• CCC Webinar: Attestation
• IBM Security Playlist
• Kubernetes Security Talks
• Cloud Native Security Playlist
• Azure Confidential Computing Playlist
• Kata Containers Overview
• AMD SEV Proxmox Discussion
• Confidential Computing Keynote
• Intel TDX Explained
• Confidential Computing Talk
• SGX Application Development
• Remote Attestation Walkthrough
• Confidential Computing Introduction
• TEE & Intel SGX Talk
• Confidential Computing Podcast Episode
• Confidential Computing with Azure
• TEE Architecture Talk
• Confidential Computing Panel
• Making Data Better Podcast – Mike Bursell on CC
• SGX Tutorial
• Confidential Containers Deep Dive
• TEE Isolation Talk
• CCC Live: Confidential Computing
• Container Security Overview
• Enclaves and Attestation
• Confidential Containers Demo
• CC Playlist – General
• Honest Computing at Data for Policy 2024
• CoCo on Kubernetes
• Fortifying AI Security in Kubernetes with CoCo
• CC Infrastructure Talk
• Kata Containers Deep Dive
• CC & Containers Webinar
• Azure CC Technical Deep Dive
• Attestation Protocols
• Remote Attestation Concepts
• TEE Use Cases
• Confidential VMs Talk
• Kata 3.0 Overview
• CoCo Technical Overview
• Confidential Computing Intro
• SGX Security
• Sovereign Cloud & CC
• TEE Architecture Overview
• Azure CC Overview
• Netflix Container Isolation
• SGX Shield Presentation
• Confidential Containers Walkthrough
• CC & AI Security
• Container Orchestration & CC
• Confidential Computing Use Cases
• TEE Deep Dive
• CC Demo & Walkthrough
• Enclave Development
• CC Emerging Threats
• Privacy & CC Talk
• CC Research Talk
• Linux Plumbers: CC Session
• CC Infrastructure Demo
• Kubernetes CC Talk Series
• CC & Containers on Azure
• Azure CC Technical Walkthrough
• Intel TDX Security
• CC Live Session
• SGX Tutorial Talk
• CoCo Technical Discussion
• Enclave Development & Security
• Illinois Mediaspace: CC Lecture 1
• Illinois Mediaspace: CC Lecture 2
• Illinois Mediaspace: CC Lecture 3
• Azure Confidential Inferencing
• CC Industry Overview
• SEV-SNP Attestation
• Enabling Private Gen AI (Google)
• CC Keynote Slides (FOSDEM 2025)
• Skyflow Podcast: Confidential Computing & Enclaves
• AI Confidential Podcast
• FOSDEM 2024: Linux on a Confidential VM
• FOSDEM 2024: Confidential Computing Track
• KubeCon 2023: Confidentiality of K8s Control Planes
• SGX Side Channel Attacks Talk (Van Bulck)
• CC Talk
• CCC Webinar: CC Overview
• CC Security Talk
• CC Architecture Talk
• CC & TEE Talk
• CC Infrastructure Talk
• CCC Webinar: Attestation Deep Dive
• CC Overview Talk
• CC & Containers Talk
• CCC Webinar: CC in Practice
• CCC Webinar: TEE Security
• CCC Webinar: CC Future
• CCC Webinar: Attestation Protocols
• CCC Webinar: CC Standards
• CC & Containers Discussion
• CC Talk (Extended)

Research Papers

• GPU TEEs for AI (Phala Network)
• Confidential Computing Survey (2025)
• TEE-based Privacy Systems
• Attestation & TLS in Confidential Computing (IETF)
• Confidential AI Security
• CVM Benchmark Study
• Borg, Omega, and Kubernetes – Burns et al. (USENIX)
• Verifiable AI with TEEs (Oasis Protocol)
• TEE Security Analysis
• CC Threat Models
• TEE Architecture Survey
• Confidential Computing for Networking (IETF)
• CC Performance Overhead
• SEI/CMU: CC Architecture Report
• Azure Confidential VMs with NVIDIA H100
• CC for Multi-party ML
• AWS Nitro Enclaves Overview
• CVM Explained (TU Munich)
• SysTEX 2022: TEE Systems
• Microsoft Research: Haven (Shielding Applications)
• Azure AI Confidential Inferencing Deep Dive
• CC Performance in VMs
• Confidential Computing Overview (ACM Queue)
• ACM Queue: CC Architecture
• Confidential Computing Survey (ACM)
• TEE Supply Chain Security
• TEE-101 White Paper (Secure Technology Alliance)
• Trustworthy AI using Confidential Federated Learning (CACM)
• DeepAttest: Attestation of Deep Neural Networks (ISCA)
• IoT TEE Security
• CC Systems Survey (ACM)
• SGX Security Analysis
• IEEE: TEE Architecture
• ML in Secure Enclaves
• TEE Side Channels
• Ahoi Attacks (Side Channel)
• TEE Container Security (ACM)
• LATTE: TEE Attestation Framework
• CC Systems Design (ACM)
• SGX Security Dissertation (U Michigan)
• TEE for ML Privacy
• Hardware TEE for Containers
• Ohio State: TEE Dissertation
• TEE Attack Surfaces
• IEEE: SGX Performance
• WPI: CC Thesis
• SDN/NFV Security for CC
• TEE Deployment Challenges
• Biorxiv: Secure Bioinformatics
• CC Privacy-Preserving AI
• SGX Lingo & Concepts
• SGX Getting Started Guide
• Haven: Shielding Applications (Slides)
• Core Slicing: CVM Isolation (USENIX)
• SGX Malware Analysis
• CoCo: From Sandboxed to Confidential Containers
• Fritz Alder: TEE Publications
• SGX Intro Lecture (UConn)
• Hecate: Lifting On-Premises to Untrusted Cloud (Microsoft Research)
• Kata Containers History (Oracle)
• vSGX: Virtualizing SGX on AMD SEV
• Chain of Trust for Multi-Clouds with SGX
• EnclaveDB (Microsoft Research)
• CCF: Confidential Verifiable Replicated Services (Microsoft)
• CC within AI Accelerators (Microsoft)
• SGX VB Architecture (Northeastern)
• TEE Storage Security
• CC Threat Model Analysis
• Graphene-SGX: Library OS for SGX
• AOT Preparation for TEEs
• TEE Design Patterns
• TEE Consistency (ICDCS)
• HASP 2018: TEE Slides
• TEE Storage Solutions (Utah)
• Trust No One: CC for Containers
• Rokwire: Secure Systems at Illinois
• Foreshadow Attack (UW)
• SGX Shield
• CC Data Sharing (ACM)
• Cornell: SGX for Untrusted OS
• Enclave Storage (Utah)
• Berkeley: CC Systems Report
• Intel TDX Security & Side Channels
• CC Trusted Systems (ACM)
• Predictive CPU Isolation at Netflix
• Merkle Trees (Brilliant)
• NIST: CC Guidelines
• SoK: TEE Design Choices
• TRUCE: Private Benchmarking for LLMs
• CC for EDA in Public Clouds
• SGX Architecture (UConn)
• OpenSGX Tutorial Slides
• Memory Protection for AI/ML Inferencing (Azure)
• NVIDIA H100 CC Research Note
• Edgeless Systems: CC Whitepaper
• Wright State: TEE Dissertation
• Private AI Tools (Google Research)
• CC & Privacy-Preserving AI
• CC Security Analysis
• Container Network Security (Southern)
• Secure Compute MOSE (USF)
• dm-verity (Android)
• Confidential Computing Systems (2020)
• TEE Side Channel Attacks (2022)
• CC Security Analysis (2025)
• AI Security Architecture (Stanford)
• CC Research Paper (2025)
• SGX Security Dissertation (U Michigan, alt)
• TEE Attack Analysis
• TEE Attack Surfaces (alt)
• SGX Architecture Lecture (UConn)

Blog Posts & Articles

• WhatsApp Private Processing (Meta)
• Azure CC VM & Disk Encryption via HSM
• Confidential Computing: The Key to AI Security
• The End of “Just Trust Us”
• AMD Helping Secure GPUs for AI
• Does Confidential Computing Work with Containers? (CCC)
• The Squandered Holy Grail (Xe Iaso)
• Securing TEE Apps (Bedlam Research)
• 1Password: What is Confidential Computing?
• Cube AI: Privacy-Preserving LLMs with CC
• Intel TDX Design Flaws (x86.lol)
• Azure CC Knowledge Junction Overview
• Building Trust into OS Images for CC (Red Hat/Microsoft)
• Aligning with Kata CC for Zero Trust (Azure)
• OpenAI: Reimagining Secure Infrastructure for Advanced AI
• Scientists Find Cloud Server Vulnerability
• Encloud FAQ
• Deep Dive: Secure Orchestration of CC on Azure
• Confidential Computing Blog (Azure)
• Mozilla Anonym Technology Overview
• OpenHCL: Microsoft’s Open-Source Paravisor (InfoWorld)
• OpenHCL Discussion (r/rust)
• Red Hat: 5 CC Support Technologies
• Red Hat: Confidential Containers on Azure OpenShift
• Red Hat: Introducing Confidential Containers Trustee
• How Confidential Containers Retrieve Secrets (ITNext)
• Azure Secure Key Release – Part 1 (Van Laere)
• Azure Secure Key Release – Part 2 (Van Laere)
• Azure CoCo Overview (Van Laere)
• State of Confidential Containers (Parisel)
• Confidential Computing on Azure with K8s (The New Stack)
• Kata Containers on AKS (Azure Aggregator)
• Alibaba Cloud: Kata 3.0
• Kata Containers 3.0 Release
• Red Hat Supports CNCF Confidential Containers
• Attestation Methods: Raw Attestation (Enclaive)
• Nature: TEEs and Security Architectures
• Secure AI with CC (Knowledia)
• Hacker News: CC Discussion
• AMD SEV Discussion (r/Proxmox)
• Apple Secure Enclaves for AI (r/apple)
• Unlocking Secure Private AI
• Software Testing Antipatterns
• AMD Helping Secure GPUs (TenForums)
• Azure Pipeline Agents with Entra (Van Laere)
• AI Confidential Podcast
• Intro to Crypto & Digital Signatures (Dropbox)
• Stanford: CC Reference

Tools & Repositories

• Azure Clean Room
• OrbStack (Container Dev Environment)
• Awesome Confidential Computing
• Open Enclave Issue Tracker
• Awesome Policy as Code
• LF Decentralized Trust: CC Tools for Fabric
• Microsoft HCSSHIM
• HCSSHIM Security Policy
• Confidential Containers Project
• CoCo Acronyms Wiki
• CoCo Glossary
• Container Integrity Measurement Agent
• Gramine (Library OS for SGX)
• Mystikos (Microsoft TEE SDK)
• Full Disk Encryption for CC
• Confidential Cluster
• IBM Cloud Confidential Computing Docs
• Merkle Tree (Wikipedia)
• CCC Blog
• CCC Slack
• NVIDIA GPU Operator for Confidential Containers
• Sovereign Cloud
• Temporal (Workflow Orchestration)
• HCSSHIM Issues
• HCSSHIM PRs
• HCSSHIM Internal Guest
• gRPC Introduction
• Red Hat Defensive Coding Guide: TLS
• FOSDEM 2024 Schedule
• Introduction to CC (Google Play)

Books & Courses

• Introduction to Confidential Computing (Google Books)
• Diginova: CC Guide (Gumroad)
• MIT 6.858: Computer Systems Security
• UConn ECE 4451: Hardware Security
• Duke CompSci 590: Secure Systems
• Docker Deep Dive (Nigel Poulton)
• UIUC CS 423: Operating Systems
• Web & Network Security (NJIT)
• UMass CS 677: Distributed Systems
• Brown CS 2390: Privacy-Aware Systems
• OSTEP: Operating Systems in Three Easy Pieces
• UMB CS 634: Operating Systems Lecture
• UT Austin CS 360V: Virtualization
• Columbia: Private Systems Class
• Duke CompSci 510: Secure Systems
• Stanford CS 190: Software Design
• Princeton COS 316: Computer System Design
• Colorado State CS 370: Operating Systems
• A Philosophy of Software Design (Book)
• UC Berkeley CS 161: Computer Security
• CMU CyLab: Security Courses
• UIUC Virtualization Lectures (CS 423)
• CloudYuga: CC Hands-on Lab
• Docker Notes (JHU)
• UConn: Sanctum Lecture
• Penn State: Trusted Computing Slides
• NYU: TEE Lecture Notes
• KSU: System Monitoring Lab
• Kubernetes Basics (kubernetes.io)
• Kubernetes for the Absolute Beginners (Udemy)

Vendor & Product Resources

• Azure Confidential Computing: Clean Rooms
• Azure Well-Architected: Encryption
• Azure Trusted Hardware Identity Management
• Hyper-V Nested Virtualization
• Azure Open Source Architecture Scenarios
• Cell Patterns: Secure Computing in Biology

Researcher Pages

• Thomas Van Laere
• Hwang Lab Publications
• Chung Kim
• Mengyuan Li (MIT CSAIL)
• Pradyumna Shome
• ZZM Research

Community

• Confidential Computing Consortium Slack