Confidential Computing: Challenges, Solutions, and the Role of Rust in the SOFAEnclave Stack

In the cloud‑native era, Go has become the de‑facto language for high‑concurrency infrastructure, while Rust, originally created to replace C/C++, has struggled for adoption despite its strong memory‑safety guarantees. The growing demand for data security in cloud services has created a fertile environment for Rust‑based confidential computing solutions.

Confidential computing fills a gap in cloud security by encrypting data while it is being processed (Data‑in‑use). Traditional approaches only protect data at rest or in transit. Trusted Execution Environments (TEEs) such as Intel SGX, Intel TDX, AMD SEV, ARM TrustZone, and RISC‑V Keystone provide the hardware foundation for this capability.

SGX, the most advanced commercial TEE, introduces an Enclave—a protected memory region isolated from the rest of the system, offering memory encryption, remote attestation, and strong isolation. However, developing SGX applications is difficult: developers must partition applications, learn diverse Enclave hardware APIs, and cope with limited OS support inside Enclaves.

To overcome these challenges, Ant Group has open‑sourced the SOFAEnclave stack, which consists of three main components:

Occlum LibOS : a Linux‑compatible LibOS that runs inside an Enclave, supports POSIX APIs and many languages (C/C++, Java, Python, Go, Rust), and has been recognized in ASPLOS 2020.

HyperEnclave : a hardware‑agnostic Enclave virtualization layer that maps to existing TEEs and can run on machines without native Enclave extensions by using a Type 1.5 hypervisor, enabling flexible trust chains and support for memory‑encryption hardware like Intel MKTME/TDX or AMD SEV.

KubeTEE : an extension to Kubernetes that makes Enclave resources first‑class citizens, handling Enclave scheduling, monitoring, and remote attestation through the AECS component.

Rust plays a central role in the stack: both Occlum and HyperEnclave are primarily written in Rust, leveraging its memory‑safety and performance to accelerate development and improve security. Ant Group’s confidential‑computing director Yan Shoumeng, a former Intel senior researcher with publications in top conferences (ASPLOS, PLDI, FSE, MM), emphasizes that the stack lowers the barrier to confidential computing and promotes the evolution from cloud‑native to trustworthy‑native architectures.