Operational Security for Enclave Deployments

Operational Security for Enclave Deployments - openclawsecurity.net Forum https://openclawsecurity.net/community/enclave-operational-security/ openclawsecurity.net Discussion Board en-US Tue, 30 Jun 2026 13:06:48 +0000 wpForo 60 Walkthrough: How we use attested TLS to secure all traffic between our enclaves and external services. https://openclawsecurity.net/community/enclave-operational-security/walkthrough-how-we-use-attested-tls-to-secure-all-traffic-between-our-enclaves-and-external-services/ Tue, 30 Jun 2026 01:01:27 +0000 Operational Security for Enclave Deployments Iris Vega https://openclawsecurity.net/community/enclave-operational-security/walkthrough-how-we-use-attested-tls-to-secure-all-traffic-between-our-enclaves-and-external-services/ Check out my Terraform module for deploying a fault-tolerant attestation verifier pool. https://openclawsecurity.net/community/enclave-operational-security/check-out-my-terraform-module-for-deploying-a-fault-tolerant-attestation-verifier-pool/ Sun, 28 Jun 2026 18:00:04 +0000 Operational Security for Enclave Deployments Oli N. https://openclawsecurity.net/community/enclave-operational-security/check-out-my-terraform-module-for-deploying-a-fault-tolerant-attestation-verifier-pool/ My results after stress-testing key rotation: Azure's Managed HSM failed under load. https://openclawsecurity.net/community/enclave-operational-security/my-results-after-stress-testing-key-rotation-azures-managed-hsm-failed-under-load/ Sat, 27 Jun 2026 19:59:59 +0000 Operational Security for Enclave Deployments Ken Adams https://openclawsecurity.net/community/enclave-operational-security/my-results-after-stress-testing-key-rotation-azures-managed-hsm-failed-under-load/ Comparing the overhead of memory encryption between Intel TDX and standard SGX enclaves. https://openclawsecurity.net/community/enclave-operational-security/comparing-the-overhead-of-memory-encryption-between-intel-tdx-and-standard-sgx-enclaves/ Thu, 25 Jun 2026 23:38:20 +0000 Operational Security for Enclave Deployments Phil Andersen https://openclawsecurity.net/community/enclave-operational-security/comparing-the-overhead-of-memory-encryption-between-intel-tdx-and-standard-sgx-enclaves/ Check out this CLI tool I made to diff enclave measurement registers between deploys. https://openclawsecurity.net/community/enclave-operational-security/check-out-this-cli-tool-i-made-to-diff-enclave-measurement-registers-between-deploys/ Thu, 25 Jun 2026 16:38:19 +0000 Operational Security for Enclave Deployments Dave R. https://openclawsecurity.net/community/enclave-operational-security/check-out-this-cli-tool-i-made-to-diff-enclave-measurement-registers-between-deploys/ Guide: Patching the Intel microcode for your SGX hosts without taking down all enclaves. https://openclawsecurity.net/community/enclave-operational-security/guide-patching-the-intel-microcode-for-your-sgx-hosts-without-taking-down-all-enclaves/ Thu, 25 Jun 2026 11:01:17 +0000 Operational Security for Enclave Deployments Nina G. https://openclawsecurity.net/community/enclave-operational-security/guide-patching-the-intel-microcode-for-your-sgx-hosts-without-taking-down-all-enclaves/ Breaking: Major cloud provider announces price cut for confidential VMs. Will this change adoption? https://openclawsecurity.net/community/enclave-operational-security/breaking-major-cloud-provider-announces-price-cut-for-confidential-vms-will-this-change-adoption/ Thu, 25 Jun 2026 05:57:28 +0000 Operational Security for Enclave Deployments Aisha Khan https://openclawsecurity.net/community/enclave-operational-security/breaking-major-cloud-provider-announces-price-cut-for-confidential-vms-will-this-change-adoption/ News: AMD SEV-SNP getting more adoption. Is it time to consider it over SGX for Claw? https://openclawsecurity.net/community/enclave-operational-security/news-amd-sev-snp-getting-more-adoption-is-it-time-to-consider-it-over-sgx-for-claw/ Thu, 25 Jun 2026 01:57:45 +0000 Operational Security for Enclave Deployments Carlos Mendez https://openclawsecurity.net/community/enclave-operational-security/news-amd-sev-snp-getting-more-adoption-is-it-time-to-consider-it-over-sgx-for-claw/ Am I the only one documenting every single measurement and praying I never need the audit trail? https://openclawsecurity.net/community/enclave-operational-security/am-i-the-only-one-documenting-every-single-measurement-and-praying-i-never-need-the-audit-trail/ Wed, 24 Jun 2026 18:19:11 +0000 Operational Security for Enclave Deployments Sam K. https://openclawsecurity.net/community/enclave-operational-security/am-i-the-only-one-documenting-every-single-measurement-and-praying-i-never-need-the-audit-trail/ What is the best way to do rolling updates of enclave hosts without causing attestation storms? https://openclawsecurity.net/community/enclave-operational-security/what-is-the-best-way-to-do-rolling-updates-of-enclave-hosts-without-causing-attestation-storms/ Wed, 24 Jun 2026 13:57:26 +0000 Operational Security for Enclave Deployments Dave R. https://openclawsecurity.net/community/enclave-operational-security/what-is-the-best-way-to-do-rolling-updates-of-enclave-hosts-without-causing-attestation-storms/