You can create a node pool that supports confidential computing for a Container Service for Kubernetes (ACK) cluster. The node pool functions as a Trusted Execution Environment (TEE) that can protect your code and sensitive data from being sniffed or compromised when the code or data is in use. This topic describes how to create a node pool that supports confidential computing.
Prerequisites
- A managed Kubernetes cluster is created. For more information, see Create a managed Kubernetes cluster. The created cluster must meet the following requirements:
- The network plug-in is Flannel.
- The container runtime is Docker.
- The cluster is deployed in a region where you can purchase ECS Bare Metal instances of the ecs.ebmhfg5.2xlarge type.