menu
arrow_back

Running a gRPC Server Inside an Asylo Enclave

Running a gRPC Server Inside an Asylo Enclave

1時間 7クレジット

GSP456

Google Cloud Self-Paced Labs

Overview

In gRCP, a client application can call methods on a server application on a different machine. In this lab you run a gRPC server to run inside an Asylo enclave, then make a Remote Procedure Call (RPC) to the server.

What you'll do:

  • Use an Asylo image to configure a Docker container

  • Enable IPv6

  • Run a server enclave using Bazel

  • Make RPCs to the server through a second terminal window

An enclave

An enclave is a special execution context where code can run protected from even the OS kernel, with the guarantee that even a user running with root privileges cannot extract the enclave’s secrets or compromise its integrity. Such protections are enabled through hardware isolation technologies such as Intel SGX or ARM TrustZone, or even through additional software layers such as a hypervisor. These technologies enable new forms of isolation beyond the usual kernel/user-space separation.

Asylo

Asylo is an open source framework for developing enclave applications. It defines an abstract enclave model that can be mapped transparently onto a variety of enclave technologies (a.k.a., enclave backends). Asylo provides a software-development platform that supports a growing range of use cases. In a sense, the enclave backend can be viewed as a special-purpose embedded computer running inside a conventional machine, with Asylo providing the necessary runtime for that embedded computer.

What you'll do:

  • Use an Asylo image to configure a Docker container

  • Enable IPv6

  • Run a server enclave using Bazel

  • Make RPCs to the server through a second terminal window

Join Qwiklabs to read the rest of this lab...and more!

  • Get temporary access to the Google Cloud Console.
  • Over 200 labs from beginner to advanced levels.
  • Bite-sized so you can learn at your own pace.
Join to Start This Lab