Joined January 2022
- Tweets 130
- Following 95
- Followers 44
- Likes 101
21 Photos and videos
May 11
NVIDIA GPU Attestation matters for confidential AI π
GPU trust cannot stop at the VM boundary.
For platforms like Cocos AI, attestation helps extend trust to accelerated infrastructure.
π docs.nvidia.com/attestation/β¦
π cocos.ai/
#ConfidentialComputing #NVIDIA #GPU
4
6
73
May 5
Cocos aTLS now binds attestation to the TLS session π
That means:
β’ stronger relay-attack protection
β’ more robust attested connections
π ultraviolet.rs/blog/atls-binβ¦
#ConfidentialComputing #TEE #TLS
5
6
80
Apr 29
Why does vTPM matter inside a Confidential VM? π
In Cocos AI, vTPM is part of the trust chain inside the CVM, enabled through Coconut-SVSM.
That helps extend trust into the guest environment.
π cocos.ai/docs/trusted-executβ¦
#ConfidentialComputing #TEE
2
4
65
Apr 27
Confidential workloads on Google Cloud β with more than just infra π
Cocos AI adds:
β’ an agent inside the CVM
β’ Docker, Wasm, Python, and ELF runtimes
β’ provisioning, hardening, and integrity monitoring
π cocos.ai/
#ConfidentialComputing #GoogleCloud #TEE
3
5
105
Apr 24
KBS controls decryption π
In Cocos AI:
β’ KBS stores decryption keys
β’ attestation gates key release
β’ separate KBS paths for algos and data
That makes OCI delivery policy-driven, not just encrypted.
π cocos.ai/docs/remote-resourcβ¦
#ConfidentialComputing #OCI #TEE
3
6
103
Apr 23
Less exposure inside the CVM π
In Cocos AI:
β’ SSH is disabled
β’ Docker uses Ramdisk
That means less persistent state inside the guest.
π cocos.ai/docs/architecture-cβ¦
#ConfidentialComputing #TEE
3
6
73
Apr 22
Wasm inside Confidential VMs π
Cocos AI supports AMD and Intel TEEs.
With Wasm in the CVM:
β’ lightweight runtime
β’ more flexibility
β’ more portable execution
π cocos.ai/
#ConfidentialComputing #WebAssembly
3
6
61
Apr 20
What makes a Confidential VM trustworthy beyond the TEE? π
In Cocos AI, trust also includes:
β’ vTPM inside the CVM
β’ measured boot
β’ Linux IMA
That means guest state can be measured and verified end to end.
π cocos.ai/docs/trusted-executβ¦
#ConfidentialComputing #TEE
3
7
81
Apr 15
Confidential workloads need runtime flexibility
In the Confidential VM, Cocos AI runs:
β’ Docker containers
β’ Wasm modules
β’ Python scripts
β’ ELF binaries
Runtime flexibility makes confidential compute practical.
π cocos.ai/
#ConfidentialComputing #TEE
3
5
64
Apr 9
Confidential workloads across private cloud, Google Cloud, and Azure π
Cocos AI supports:
β’ private and public cloud
β’ more flexibility
β’ an easier path to confidential workloads
π cocos.ai/
#ConfidentialComputing #TEE #CloudComputing
1
3
5
56
Apr 8
Encrypted algorithms and datasets as OCI images π
In Cocos AI, resources use:
β’ OCI registries
β’ attestation-gated keys
β’ decryption only in the TEE
That makes OCI artifacts usable for confidential workloads.
π cocos.ai/docs/remote-resourcβ¦
#ConfidentialComputing #OCI #TEE
1
6
7
116
Apr 7
Why build EOS with Buildroot? π
In Cocos AI, a smaller guest OS means:
β’ less attack surface
β’ lower footprint
β’ faster CVM boot
For confidential VMs, minimalism is part of security.
π cocos.ai/
#ConfidentialComputing #TEE
1
4
6
118
Apr 6
Attestation gives evidence.
Compare it to what? π€
CoRIM defines reference:
β’ known-good values
β’ expected state
β’ trust across TDX/SEV-SNP
Cocos AI makes it policy-driven.
π cocos.ai
π CoRIM draft: datatracker.ietf.org/doc/draβ¦
#ConfidentialComputing #TEE
1
2
4
98
Apr 3
Trust shouldn't depend on vendor TEE attestation π
Entity Attestation Token (EAT) standardizes attestation evidence.
With Cocos AI:
β across TDX & SEV-SNP
β verifiable runtime claims
β portable trust layer
π ultraviolet.rs
#ConfidentialComputing #TEE
2
4
91
Apr 2
How do you collaborate on sensitive data π€
Without exposure?
π Multi-party AI enables:
β’ Data is encrypted & processed in enclaves
β’ Attested execution
β’ Only insights are shared
AI collaboration without exposure
π prism.ultraviolet.rs/
#ConfidentialComputing #AI
1
3
22
Apr 1
Who verifies the machine? π€
π Remote Attestation:
β’ Proof of execution in secure enclaves
β’ Integrity check before processing
β’ No trust in infra
No attestation = no proof
π ultraviolet.rs/
#ConfidentialComputing #CyberSecurity
2
2
26
Mar 31
Why is data vulnerable during processing? π€
Encryption usually stops there.
π Confidential Computing:
β’ Encrypted in use
β’ Secure enclaves (TDX, SEV-SNP)
β’ Verifiable execution
Trust β cryptographic proof
π ultraviolet.rs/
#ConfidentialComputing #CyberSecurity
3
5
57
Mar 30
How do you run secure computations across cloudsβwithout exposing data? π
Prism AI:
β
Attested TLS (remote attestation)
β
Intel TDX & AMD SEV-SNP
β
SHA3-256 verification
π₯ youtube.com/watch?v=1yGJ787_β¦
#ConfidentialComputing #PrismAI #CyberSecurity
4
6
91
Mar 27
Cocos AI first to implement next-gen aTLS π
Level 2 binding:
β’ Session-bound attestation
β’ TLS 1.3 exporters
β’ Stronger vs relay
From identity-based β session-bound crypto trust
π ultraviolet.rs/blog/atls-binβ¦
#ConfidentialComputing #TEE #CyberSecurity
7
7
127
Mar 26
Collaborate on sensitive data β without exposing it π
Prism AI enables secure, multi-party AI
across organizations β without data sharing.
Combine datasets, preserve privacy,
and keep full control over your data.
πΊ youtube.com/watch?v=1yGJ787_β¦
#ConfidentialComputing #PrismAI
2
2
48