Git-Mirrors/constellation
1
0
Fork 0
mirror of https://github.com/edgelesssys/constellation.git synced 2025-02-22 16:00:05 -05:00
Code Issues Packages Projects Releases Wiki Activity

intro page revised

Browse Source
This commit is contained in:
david-crypto 2024-10-29 08:14:04 +01:00
parent d070842f12
commit 7bf46e7608
1 changed files with 11 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
docs/docs/architecture/intro.md
View File

@ -2,12 +2,19 @@
This section of the documentation offers a comprehensive overview of Constellation's inner workings. It details the chain of trust between various components and how they work together to ensure robust protection for your workloads. The main chapters include:
- [**Protocol Overview**](./overview.md): The recommended **starting point** for exploring the architecture. This chapter gives an overview of Constellation's architecture and explains the security protocol that underpins confidentiality and strong protection for your workloads.
- [**Key Components**](./components/cli.md): This chapter outlines Constellation's key components, their purposes, and how users interact with them:
- The [CLI](./components/cli.md)is used to create and orchestrate your cluster.
- [**Protocol overview**](./overview.md): The recommended **starting point** for exploring the architecture. This chapter gives an overview of Constellation's architecture and explains the security protocol that underpins confidentiality and strong protection for your workloads.
- [**Key components**](./components/cli.md): This chapter outlines Constellation's key components, their purposes, and how users interact with them:
- The [CLI](./components/cli.md) is used to create and orchestrate your cluster.
- Constellation's [core services](./components/microservices.md) run on control planes to ensure secure protocols for cluster expansion and integrity checks.
- Constellation provides [operating system images](./components/node-images.md) for Kubernetes control-plane and worker nodes, optimized for containerized workloads and prepared for confidential VMs.
- [**Protection Mechanisms**](./security/attestation.md): A deeper dive into the various concepts that deliver strong protection guarantees for your Kubernetes clusters.
- [**Protection mechanisms**](./security/attestation.md): A deeper dive into the various concepts that deliver strong protection guarantees for your Kubernetes clusters, including:
- [Attestation](./security/attestation.md): The process to verify that your workloads are in a secure and protected state.
- [Encrypted networking](./security/encrypted-networking.md): This section discusses how Constellation provides strong encryption for all cluster traffic.
- [Encrypted persistent storage](./security/encrypted-storage.md): Constellation's method for keeping your data secret when persistent data storage is needed.
- [Cryptographic keys and primitives](./security/keys.md): An overview of how Constellation manages cryptographic keys and the cryptographic primitives involved in guaranteeing the protection of your workloads and data.
- [**Observability**](./observability.md): In a Kubernetes context, observability is crucial for efficiently identifying and resolving issues. This chapter covers Constellation's observability capabilities.