Skip to content


Helm is the package manager for Kubernetes. It is our favorite way to deploy SCONE-based confidential applications to Kubernetes. Note that we do not need to trust Helm nor Kubernetes: SCONE & SGX can protect the confidentiality and the integrity of applications - even if Helm or Kubernetes would be compromised.

Our objective is that one can securely outsource the management of Kubernetes and services, like a database service, to an external entity while still being in control of one's applications and data.

One establishes trust with a confidential application via remote attestation. In the case of SCONE, each confidential service is associated with a policy. Attestation ensures that the confidential service conforms to this policy. The attestation is in most cases delegated to TLS. In this way, one can implement mutual attestation of confidential services without the need to modify applications.


If you need commercial help installing Kubernetes clusters for confidential applications, just drop us an email.

sconeapps: Curated Confidential Applications

We support a large variety of confidential applications. One of the most convenient ways to deploy confidential applications to Kubernetes is to use Helm. We currently support this for commercial customers only. For the following steps you need to get access to the SCONE standard edition (email us).

sconeapps is a private Helm repository for which we need to grant you access. After you got access, you need to generate a GitHub token ( Click here to issue a GitHub token and grant access to scope repo).

Use your token to add the sconeapps repository to Helm:

export GH_TOKEN=...
helm repo add sconeapps https://${GH_TOKEN}
helm repo update

In case you have also access to the SCONE enterprise charts, please add this repo too:

helm repo add sconeappsee https://${GH_TOKEN}
helm repo update

SCONE Hub Credentials

The sconeapps images are stored in a private Docker Hub repo. Hence, to deploy these images, we need to grant you access and you need to pass your SCONE Hub credentials to Kubernetes. To do so, you need to create a Kubernetes secret sconeapps containing these credentials.

You could first define your credentials which includes the generation of an access token to read_registry and set:

export SCONE_HUB_EMAIL=...

and then create a Kubernetes secret as follows:

kubectl create secret docker-registry sconeapps --docker-username=$SCONE_HUB_USERNAME --docker-password=$SCONE_HUB_ACCESS_TOKEN --docker-email=$SCONE_HUB_EMAIL

Our helm charts will refer to this secret by default. In case you already use a different secret name for your SCONE HUB credentials, you can overwrite the name of the secret at the time you install any of the sconeapp charts.

Using Helm

See all charts available:

helm search repo sconeapps

Installing a chart:

helm install my-database sconeapps/mariadb-scone

This repository contains the following charts:

Chart Description
cas Deploy the SCONE Configuration and Attestation Service (CAS) to Kubernetes.
database Umbrella chart to deploy a scalable, confidential database consisting of MariaDB SCONE and MaxScale SCONE and HAProxy
las Deploy the SCONE Local Attestation Service (LAS) to all Kubernetes nodes;
mariadb-scone Deploy MariaDB SCONE, i.e., MariaDB running inside of SGX enclaves, to Kubernetes
maxscale Deploy MaxScale SCONE, i.e., Maxscale running inside of SGX enclaves and optionally, an HAProxy as Ingress
memcached Deploy memcached inside of SGX enclaves, generate and inject TLS certificates to secure communication.
nginx Deploy nginx inside of SGX enclaves, generate and inject TLS certificates to secure communication.
openvino OpenVINO (Open Visual Inference and Neural network Optimization) is a toolkit facilitating the optimization and deployment of Deep Learning models
pytorch Deploy pytorch inside of SGX enclaves.
sgxdevplug Deploy our SGX Kubernetes plugin to Kubernetes; this is required by all other helm charts;
spark Apache Spark is an open-source distributed general-purpose cluster-computing framework.
TEEMon Deploy TEEMon, our monitoring framework for confidential applications. It collects and visualizes performance metrics including SGX Metrics;
tensorflow Machine Learning framework by Google
tensorflowlite Deploy machine learning models
Visual Studio Code Deploy VisualStudio Code and the SCONE CrossCompiler to be able to edit and run your confidential applications inside of a Kubernetes cluster.
Zookeeper Deploy Zookeeper cluster inside of SGX enclaves.

We support a large number of applications running inside of SGX enclaves. Just let us know what applications you need and we will add helm charts for these applications first.


The database chart will deploy mariadb and maxscale charts together. The example below will deploy 6 instances of MariaDB SCONE: each one will act as a different shard, and also be attested by the provided CAS. MaxScale will generate a maxscale.cnf using the in-cluster DNS entries for each MariaDB instance. The last line enables an HAProxy Ingress exposing the MaxScale replicas to the external world.

helm install my-database sconeapps/database \
   --set global.mariadb.replicaCount=6 \
   --set mariadb-scone.scone.attestation.cas=$SCONE_CAS_ADDR \
   --set mariadb-scone.scone.attestation.config_id=database/db \
   --set maxscale.generateConfig=true \
   --set maxscale.haproxy-ingress.enabled=true

To check other examples and the complete set of options to further customize these charts, please refer to later sections of this chapter.