What is Veracruz?
Veracruz is a framework for defining and deploying collaborative, privacy-preserving computations amongst a group of mutually mistrusting individuals. Some potential use-cases for Veracruz include:
Privacy-preserving collaborative machine learning
Privacy-preserving delegated computations from a computationally weak device to a more capable (but potentially untrusted) edge device or server
Secret auctions, elections or polls, surveys
Veracruz uses strong isolation technology (a mixture of trusted hardware and high-assurance hypervisor-based isolation), along with remote attestation protocols, to establish a safe, “neutral ground” within which a collaborative computation takes place on an untrusted device. Concretely, Veracruz computations are WebAssembly binaries that use the WebAssembly System Interface (WASI). WebAssembly acts both as a sandbox, pinning down the behaviour of the program, and allows us to abstract over the different strong isolation technologies that we support.
Veracruz is an adopted project of the Linux Foundation’s Confidential Computing Consortium (CCC). You can learn more about Veracruz by watching our recent CCC webinar, or consulting the project wiki.
