SCONE runs programs inside secure enclaves preventing even attackers with root access from stealing secrets from these programs.
SCONE helps to configure programs with secrets that can neither be read nor modified by attackers - even if they would have already taken control of the operating system and/or the hypervisor.
SCONE can transparently encrypt files and network traffic and in this way, it protects data from unauthorized access via the operating system and the hypervisor.
SCONE transparently attests programs to ensure that only the correct, unmodified programs are executing. This also prevents maleware to attach to programs.
SCONE is compatible with Docker permitting to run scontained applications with the help of compose files on top of Docker Swarm.
SCONE supports secure compose files to protect secrets that are visible in compose files.
SCONE supports curated images for many popular services like memcached, Apache, MySQL, etc.
We provide a community edition of our services. This services run inside of enclaves in pre-release mode, i.e., one can view the memory content of these enclaves with an appropriate debugger
Services run inside of enclaves - without the possibility of inspections. This includes business day support