Posted On: Nov 28, 2022
AWS Nitro Enclaves now supports Amazon EKS and Kubernetes for orchestrating Nitro enclaves. You can now use familiar Kubernetes tools to orchestrate, scale, and deploy enclaves from a Kubernetes pod.
AWS Nitro Enclaves is an Amazon EC2 capability that enables customers to create isolated compute environments to further protect and securely process highly sensitive data within their EC2 instances. Nitro Enclaves helps customers reduce the attack surface area for their most sensitive data processing applications. Amazon EKS is a managed Kubernetes service that makes it easy for you to run Kubernetes on AWS without needing to install, operate, and maintain your own Kubernetes control plane or worker nodes.
Previously, you would need to write custom code to leverage Kubernetes to deploy and scale your Nitro enclaves. With this launch, you can use the open-source tool called the Nitro Enclaves Kubernetes Device Plug-in, which provides Kubernetes pods with the ability to manage the lifecycle of an enclave.
Kubernetes support for Nitro Enclaves is available in all AWS regions that Nitro Enclaves is available in.
To learn more about using AWS Nitro Enclaves with Amazon EKS, visit this user guide. For additional examples on using Nitro Enclaves with EKS, refer to this GitHub page.