You can create a node pool that supports confidential computing for a cluster of Container Service for Kubernetes (ACK). This creates trusted execution environments (TEEs) to store code and sensitive data in your clusters. This way, you can protect your code and data from being sniffed and compromised. This topic describes how to create a node pool that supports confidential computing.
Prerequisites
- A managed Kubernetes cluster is created. For more information, see Create a cluster of ACK Managed Edition. The created cluster must meet the following requirements:
- The network plug-in is Flannel.
- The container runtime is Docker.
- The cluster is deployed in a region where Elastic Compute Service (ECS) Bare Metal instances of the ecs.ebmhfg5.2xlarge type are available for purchase.