Ok, so who doesn’t want to take advantage of the most powerful input privacy technologies on the market? No one, that’s who! But developing for enclaves can be so tedious that often the cost to develop, support and maintain software to run on enclaves simply isn’t worth the benefits.
That is until now! We’ve been working closely with *Sebastián Ramírez Montaño* of *FastAPI* to make it as easy as possible to design, develop and ship enclave services in Python to *AWS Nitro Enclaves*.
As a recap, enclaves are like servers but with two important properties. Firstly, they have extremely limited inputs/outputs, isolating them from directly interfacing the network. Secondly, they are attested, meaning the cloud infrastructure hosting the will digitally sign a document that validates what is running inside.
These two characteristics working in conjunction with one another, enable a myriad of powerful applications, including:
- Stronger data governance: only allow your data to be decrypted in these safe environments, away from the eyes of attackers, never ending up in log files; not even your IT managers can see it through its data processing.
- Safely collaborate: connect your data and IP with that of other parties without ever directly disclosing confidential information. You can write and jointly approve the interactions of how this data should combine such information together so only safe; sanitised results will be desalinated.
- Deploy APIs users can trust: offer API services that guarantee to the end user that their data is never saved or remembered by your systems. This has a huge impact in domains such as AI-as-a-service.
At Oblivious, we strongly believe that this powerful set of capabilities will only be impactful if they are easily accessible to and integrate with the stacks people /actually use/.
So today, we are happy to share a walk-through of how to build a secure application on enclaves from scratch with FastAPI. Check out the full tutorial:
- Github: https://github.com/ObliviousAI/FastAPI-Enclave-Services
- YouTube: https://youtu.be/JEdls9tKMjk