Minimal IaaS for strong client separation.
Why?
With conventional IaaS systems, it remains a challenge to run different client workloads securely on shared hardware. This is particularly a problem for regulated markets with high security requirements. High system complexity and poor auditability often have to be concealed with architectural workarounds such as physical client separation. This results in high costs for operators and customers.
Solution
Seconlay, our Infrastructure as a Service (IaaS) tool written in Rust, addresses precisely this problem. With a relatively small Trusted Computing Base (TCB) and the strict separation of control plane and data plane, it was developed specifically for areas of application with high requirements: security and availability have top priority.
Advantages
Seconlay is a secure alternative to existing IaaS solutions for client separation. In addition to lean TCB and consistent separation of critical components, it offers the following technical advantages:
- Fail-safe: a Seconlay cluster can comprise several machines and remains stable in the event of potential failures of individual nodes.
- Automated and replicable processes: a declarative API simplifies use and operation.
- Reduced manual effort: thanks to self-healing behaviour, similar to Kubernetes, errors are automatically detected and rectified.
- Integration options: The Terraform provider simplifies embedding with existing tools and processes.
Repository
You want to actively participate in Seconlay and let your ideas and skills flow into our open-source project?
Find out here how to become part of the developer community around Seconlay and come aboard:
