README
¶
Cocos AI
Cocos AI (Confdential Computing System for AI/ML) is a platform for secure multiparty computation (SMPC) based on the Confidential Computing and Trusted Execution Environments (TEEs).
With Cocos AI it becomes possible to run AI/ML workloads on combined datasets from multiple organizations while guaranteeing the privacy and security of the data and the algorithm. Data is always encrypted, protected by hardware secure enclaves (Trusted Execution Environments), attested via secure remote attestation protocols, and invisible to cloud processors or any other 3rd party to which computation is offloaded.
Features
Cocos AI is implementing the following features:
- TEE enablement, deployment and monitoring (secure VM manager)
- HAL for TEEs based on hardened Linux kernel, secure bootloader and custom-tailored embedded rootfs for minimal TCB
- In-enclave agent, netowrking controller and other system software
- Encrypted asynchronous data transfer and result delivery
- API for programmable platform manipulation
- HW and SW supported attestation with verification tools
- CLI for system interaction
Usage
Clone the repo and create binaries:
git clone git@github.com:ultravioletrs/cocos.git
make
This will create 3 binaries:
ls build/
# cocos-agent cocos-cli cocos-manager
- Manager can be deployed on the AMD SEV-SNP host
- Agent can be built into EOS-based HAL
- CLI can be used to communicate to remote Agent.
Documentation
Project documentation is hosted at Cocos AI official docs page.
Documentation is generated from the docs repository.
License
Cocos AI is published under permissive open-source Apache-2.0 license.
Directories
¶
| Path | Synopsis |
|---|---|
|
api
Package api contains API-related concerns: endpoint definitions, middlewares and all resource representations.
|
Package api contains API-related concerns: endpoint definitions, middlewares and all resource representations. |
|
api/grpc
Package grpc contains implementation of kit service gRPC API.
|
Package grpc contains implementation of kit service gRPC API. |
|
cmd
|
|
|
server
Package server contains the HTTP, gRPC and CoAP server implementation.
|
Package server contains the HTTP, gRPC and CoAP server implementation. |
|
server/grpc
Package grpc contains the gRPC server implementation.
|
Package grpc contains the gRPC server implementation. |
|
api
Package api contains API-related concerns: endpoint definitions, middlewares and all resource representations.
|
Package api contains API-related concerns: endpoint definitions, middlewares and all resource representations. |
|
tracing
Package tracing provides tracing instrumentation for cocos auth service.
|
Package tracing provides tracing instrumentation for cocos auth service. |
|
pkg
|
|
|
clients
Package clients contains the domain concept definitions needed to support Agent Client functionality.
|
Package clients contains the domain concept definitions needed to support Agent Client functionality. |
|
test
|
|
|
manual/agent-config
Simplified script to pass configs to agent without manager and read logs and events for manager.
|
Simplified script to pass configs to agent without manager and read logs and events for manager. |