DevConf.IN 2026

Think of a confidential Kubernetes cluster as a high-security bank vault. To get inside, a node needs verified attestation—think of it as requiring both a physical key and a biometric scan.
We'll show how Trustee acts as the vault's automated security system, validating every node's credentials. The Confidential Cluster Operator is the Bank Manager, setting access policies, continuously updating the master access list (reference values), and ensuring only trusted nodes can get in.
Attendees will learn practical insights into building and operating confidential clusters and how attestation enforces a "vault-grade" Kubernetes experience, where no untrusted node can breach the system.