Overwrite v2.0 in docs (#144)

2025-08-08 23:12:18 -04:00 · 2022-09-13 12:05:07 +02:00 · 2022-09-13 12:05:07 +02:00 · d5d5448935
commit d5d5448935
parent 0165a6be43
17 changed files with 245 additions and 176 deletions
--- a/docs/versioned_docs/version-2.0/overview/security-benefits.md
+++ b/docs/versioned_docs/version-2.0/overview/security-benefits.md
@ -1,6 +1,6 @@
 # Security benefits and threat model

-Constellation implements the [Confidential Kubernetes](confidential-kubernetes.md) concept and shields entire Kubernetes deployments from the infrastructure. More concretely, Constellation decreases the size of the trusted computing base (TCB) of a Kubernetes deployment. The TCB is the totality of elements in a computing environment that must be trusted not to be compromised. A smaller TCB results in a smaller attack surface. The following diagram shows how Constellation removes the *cloud & datacenter infrastructure* and the *physical hosts*, including the hypervisor, the host OS, and other components, from the TCB (red). Inside the confidential context (green), Kubernetes remains part of the TCB, but its integrity is attested and can be [verified](../workflows/verify.md).
+Constellation implements the [Confidential Kubernetes](confidential-kubernetes.md) concept and shields entire Kubernetes deployments from the infrastructure. More concretely, Constellation decreases the size of the trusted computing base (TCB) of a Kubernetes deployment. The TCB is the totality of elements in a computing environment that must be trusted not to be compromised. A smaller TCB results in a smaller attack surface. The following diagram shows how Constellation removes the *cloud & datacenter infrastructure* and the *physical hosts*, including the hypervisor, the host OS, and other components, from the TCB (red). Inside the confidential context (green), Kubernetes remains part of the TCB, but its integrity is attested and can be [verified](../workflows/verify-cluster.md).

 ![TCB comparison](../_media/tcb.svg)