2026-06-18 –, E112 (capacity 156)
Confidential Containers bring hardware-backed Trusted Execution Environments (TEE) into the Kubernetes ecosystem, enabling workloads to run with stronger isolation and encrypted memory while preserving cloud-native workflows. As platform teams move toward zero-trust architectures, protecting data in use becomes essential for multi-tenant clusters, AI pipelines, and regulated environments.
This talk explores the architecture behind Confidential Containers, including attestation flows, runtime integration, and scheduling considerations in Kubernetes platforms. We will discuss real-world design patterns, trade-offs, and operational impacts when introducing confidential computing into hybrid and multi-cloud environments. Attendees will leave with a practical understanding of how to enhance workload security without breaking existing DevOps practices or developer experience.
System Architect/Team leader with passion for architectures, microservices, orchestration, service mesh technologies and continuous integration and delivery
Roberto is a Principal AI Architect working in the AI Business Unit specializing in Container Orchestration Platforms (OpenShift & Kubernetes), AI/ML, DevSecOps, and CI/CD. With over 10 years of experience in system administration, cloud infrastructure, and AI/ML, he holds two MSc degrees in Telco Engineering and AI/ML.