{"id":3146,"date":"2022-12-12T13:02:45","date_gmt":"2022-12-12T07:32:45","guid":{"rendered":"https:\/\/www.urolime.com\/blogs\/?p=3146"},"modified":"2022-12-13T14:52:34","modified_gmt":"2022-12-13T09:22:34","slug":"constellation-an-overview-of-the-first-always-encrypted-kubernetes-engine","status":"publish","type":"post","link":"https:\/\/www.urolime.com\/blogs\/constellation-an-overview-of-the-first-always-encrypted-kubernetes-engine\/","title":{"rendered":"Constellation: An overview of the first always-encrypted Kubernetes engine"},"content":{"rendered":"<h1>What is Constellation?<\/h1>\n<p><span style=\"font-weight: 400;\">Constellation, an Edgeless Systems creation, is the first always-encrypted Kubernetes engine in history, meaning that no one, not even cloud admins, operators, foreign governments, or \u2013 needless to say \u2013 even hackers, can get access to the data in its cluster. It\u2019s an open-source <a href=\"https:\/\/www.urolime.com\/kubernetes-consulting.html\">Kubernetes<\/a> engine. Though a normal K8s distribution like SUSE Rancher or RedHat OpenShift on the outside \u2013 fully-featured and CNCF or Certified Kubernetes Conformance certified \u2013 it is 100% confidential. How?\u00a0<\/span><\/p>\n<h2>How does Constellation ensure a trustable level of security for clusters while functioning like normal K8s?<\/h2>\n<p>With <a href=\"https:\/\/github.com\/edgelesssys\/constellation\">Constellation<\/a>, Kubernetes nodes run inside confidential virtual machines that shield computer workloads from their cloud environments and keep data encrypted even during runtime, giving you better control over your data and processes. In other words, Constellation shields the Kubernetes clusters from the infrastructure layer.<\/p>\n<p>&nbsp;<\/p>\n<p><span style=\"font-weight: 400;\">It is a breakthrough development from the existing structures, which need you to bet your trust on the cloud provider. You can have better control over your data and processes with Constellation.<\/span><\/p>\n<p>&nbsp;<\/p>\n<h3>How does Constellation implement data shielding?<\/h3>\n<p>Constellation\u2019s data shielding capacity or confidentiality is provided by, among other factors:<\/p>\n<p>&nbsp;<\/p>\n<ul>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">The underlying hardware, including AMD Secure Encrypted Virtualization (AEM) and SEV-Secure Nested Paging (SEV-SNP), and Intel Trust Domain Extensions (TDX): With ARM announced its new V9 design with confidential VM features, called Realms, last year, ensuring the confidentiality of data and processes has become further possible.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">The always-on encryption<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Cluster attestation or verification using cryptographic certificates at the cluster level: Cluster attestation is of two types \u2013 cluster-facing attestation and user-facing attestation. <\/span><span style=\"font-weight: 400;\">While Constellation\u2019s JoinService provides cluster-facing attestation, user-facing attestation is provided by Constellation\u2019s Verification Service.<\/span><\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<p><span style=\"font-weight: 400;\">With all the additional encryption layers, you might think there\u2019s a significant reduction in performance as compared to non-confidential managed Kubernetes options like <a href=\"https:\/\/www.urolime.com\/blogs\/eks-vs-aks-vs-gke-which-is-the-right-platform-for-you\/\">Azure Kubernetes Service<\/a> (AKS) and Google Kubernetes Service (GKS). But that\u2019s where the real surprise lies.\u00a0<\/span><\/p>\n<p>&nbsp;<\/p>\n<h3>Performance Impact Study From Runtime Encryption<\/h3>\n<p>To assess Constellation\u2019s performance, Edgeless Systems performed a study on two fronts:<\/p>\n<ol>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Comparison of the general impact of using runtime memory encryption with Confidential Virtual Machines (CVMs) and Standard VMs<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Benchmarking of Constellation against non-confidential managed Kubernetes options like AKS and GKE using K-Bench<\/span><\/li>\n<\/ol>\n<p><span style=\"font-weight: 400;\">The following are the key takeaways from the study:<\/span><\/p>\n<p>&nbsp;<\/p>\n<h4>Performance impact from runtime memory encryption<\/h4>\n<p><span style=\"font-weight: 400;\">Since the nodes in a Constellation cluster run inside CVMs to ensure confidentiality, the performance of CVMs impacts the Constellation\u2019s performance. Results from a performance analysis study conducted by Azure and AMD showed that Constellation performed lower than the normal non-confidentiality VMs \u2013 but by a staggering 2 to 8%. However, these figures would typically stay on the lower end for most microservice applications, and with newer generation confidential computing hardware, these figures would likely further decrease.<\/span><\/p>\n<p>&nbsp;<\/p>\n<h4>K-Bench benchmark for the overall performance of Constellation vs AKS and GKE<\/h4>\n<p><b>Kubernetes API:\u00a0<\/b><\/p>\n<p><span style=\"font-weight: 400;\">Comparing the latencies for pods, services and deployments between the three revealed that Constellation performed faster than the others with just a few exceptions.<\/span><\/p>\n<p>&nbsp;<\/p>\n<p><b>Network:\u00a0<\/b><\/p>\n<p><span style=\"font-weight: 400;\">Network performance is assessed using two indicators: intra-node and inter-node transmission speed. While the intra-node transmission is communication between pods running on the same node, inter-node communication refers to communication between different Kubernetes nodes.<\/span><\/p>\n<p>&nbsp;<\/p>\n<p><span style=\"font-weight: 400;\">Results from the benchmark study show that Constellation provides a comparably fast networking speed with exceptions for slower speed arising due to its network encryption for in-transit data protection.<\/span><\/p>\n<p>&nbsp;<\/p>\n<p><b>Storage Input\/Output:<\/b><\/p>\n<p><span style=\"font-weight: 400;\">Constellation, like Azure and GCP\u2019s <a href=\"https:\/\/www.urolime.com\/blogs\/container-object-storage-interface-cosi-to-manage-kubernetes-apis\/\">Container Storage Interfaces<\/a> (CSIs), provides persistent storage on Azure and GCP \u2013 but with encryption on the CSI layer.\u00a0<\/span><\/p>\n<p>&nbsp;<\/p>\n<p><span style=\"font-weight: 400;\">Results from the benchmark performance study show that Constellation on GCP has a similar speed in all scenarios. But the speed of Constellation on Azure and AKS differ partially. Constellation on Azure outperforms AKS in read-write mixes.<\/span><\/p>\n<p>&nbsp;<\/p>\n<p><b>The Results:\u00a0<\/b><\/p>\n<p><span style=\"font-weight: 400;\">Though encryption and performance are a known trade-off, the performance benchmarks reveal that Constellation is at the same level as AKS and GKE for networking and storage throughput and even outperforms them on API latency. Wherever it performs lower than the others, it\u2019s because of its automatic data encryption over the network or storage for enhanced protection.\u00a0<\/span><\/p>\n<p>&nbsp;<\/p>\n<h4>To Conclude: Can Your Company Benefit From Constellation?<\/h4>\n<p>In short, yes. But that also depends on your specific requirements. With compatibility across all major clouds, including Azure and GCP, CNCF-certification for compatibility with other Kubernetes tools and workloads, comparably less performance impact (as per the results from their revealed study), and increased security gains, among other benefits, Constellation can comfortably help you kickstart your cloud confidentiality journey.<\/p>\n<p>&nbsp;<\/p>\n<p><span style=\"font-weight: 400;\">In search of a reliable <a href=\"https:\/\/www.urolime.com\/kubernetes-consulting.html\">Kubernetes Consulting Services<\/a> provider, we have the best solutions for your help. Experience the technical proficiency of our Kubernetes experts.<\/span><\/p>\n<div class=\"pvc_clear\"><\/div>\n<p id=\"pvc_stats_3146\" class=\"pvc_stats all  \" data-element-id=\"3146\" style=\"\"><i class=\"pvc-stats-icon medium\" aria-hidden=\"true\"><svg aria-hidden=\"true\" focusable=\"false\" data-prefix=\"far\" data-icon=\"chart-bar\" role=\"img\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" viewBox=\"0 0 512 512\" class=\"svg-inline--fa fa-chart-bar fa-w-16 fa-2x\"><path fill=\"currentColor\" d=\"M396.8 352h22.4c6.4 0 12.8-6.4 12.8-12.8V108.8c0-6.4-6.4-12.8-12.8-12.8h-22.4c-6.4 0-12.8 6.4-12.8 12.8v230.4c0 6.4 6.4 12.8 12.8 12.8zm-192 0h22.4c6.4 0 12.8-6.4 12.8-12.8V140.8c0-6.4-6.4-12.8-12.8-12.8h-22.4c-6.4 0-12.8 6.4-12.8 12.8v198.4c0 6.4 6.4 12.8 12.8 12.8zm96 0h22.4c6.4 0 12.8-6.4 12.8-12.8V204.8c0-6.4-6.4-12.8-12.8-12.8h-22.4c-6.4 0-12.8 6.4-12.8 12.8v134.4c0 6.4 6.4 12.8 12.8 12.8zM496 400H48V80c0-8.84-7.16-16-16-16H16C7.16 64 0 71.16 0 80v336c0 17.67 14.33 32 32 32h464c8.84 0 16-7.16 16-16v-16c0-8.84-7.16-16-16-16zm-387.2-48h22.4c6.4 0 12.8-6.4 12.8-12.8v-70.4c0-6.4-6.4-12.8-12.8-12.8h-22.4c-6.4 0-12.8 6.4-12.8 12.8v70.4c0 6.4 6.4 12.8 12.8 12.8z\" class=\"\"><\/path><\/svg><\/i> <img loading=\"lazy\" decoding=\"async\" width=\"16\" height=\"16\" alt=\"Loading\" src=\"https:\/\/www.urolime.com\/blogs\/wp-content\/plugins\/page-views-count\/ajax-loader-2x.gif\" border=0 \/><\/p>\n<div class=\"pvc_clear\"><\/div>\n","protected":false},"excerpt":{"rendered":"<p>What is Constellation? Constellation, an Edgeless Systems creation, is the first always-encrypted Kubernetes engine in history, meaning that no one, not even cloud admins, operators, foreign governments, or \u2013 needless to say \u2013 even hackers, can get access to the data in its cluster. It\u2019s an open-source Kubernetes engine. Though a normal K8s distribution like [&hellip;]<\/p>\n<div class=\"pvc_clear\"><\/div>\n<p id=\"pvc_stats_3146\" class=\"pvc_stats all  \" data-element-id=\"3146\" style=\"\"><i class=\"pvc-stats-icon medium\" aria-hidden=\"true\"><svg aria-hidden=\"true\" focusable=\"false\" data-prefix=\"far\" data-icon=\"chart-bar\" role=\"img\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" viewBox=\"0 0 512 512\" class=\"svg-inline--fa fa-chart-bar fa-w-16 fa-2x\"><path fill=\"currentColor\" d=\"M396.8 352h22.4c6.4 0 12.8-6.4 12.8-12.8V108.8c0-6.4-6.4-12.8-12.8-12.8h-22.4c-6.4 0-12.8 6.4-12.8 12.8v230.4c0 6.4 6.4 12.8 12.8 12.8zm-192 0h22.4c6.4 0 12.8-6.4 12.8-12.8V140.8c0-6.4-6.4-12.8-12.8-12.8h-22.4c-6.4 0-12.8 6.4-12.8 12.8v198.4c0 6.4 6.4 12.8 12.8 12.8zm96 0h22.4c6.4 0 12.8-6.4 12.8-12.8V204.8c0-6.4-6.4-12.8-12.8-12.8h-22.4c-6.4 0-12.8 6.4-12.8 12.8v134.4c0 6.4 6.4 12.8 12.8 12.8zM496 400H48V80c0-8.84-7.16-16-16-16H16C7.16 64 0 71.16 0 80v336c0 17.67 14.33 32 32 32h464c8.84 0 16-7.16 16-16v-16c0-8.84-7.16-16-16-16zm-387.2-48h22.4c6.4 0 12.8-6.4 12.8-12.8v-70.4c0-6.4-6.4-12.8-12.8-12.8h-22.4c-6.4 0-12.8 6.4-12.8 12.8v70.4c0 6.4 6.4 12.8 12.8 12.8z\" class=\"\"><\/path><\/svg><\/i> <img loading=\"lazy\" decoding=\"async\" width=\"16\" height=\"16\" alt=\"Loading\" src=\"https:\/\/www.urolime.com\/blogs\/wp-content\/plugins\/page-views-count\/ajax-loader-2x.gif\" border=0 \/><\/p>\n<div class=\"pvc_clear\"><\/div>\n","protected":false},"author":1,"featured_media":3147,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"content-type":"","sfsi_plus_gutenberg_text_before_share":"","sfsi_plus_gutenberg_show_text_before_share":"","sfsi_plus_gutenberg_icon_type":"","sfsi_plus_gutenberg_icon_alignemt":"","sfsi_plus_gutenburg_max_per_row":"","rop_custom_images_group":[],"rop_custom_messages_group":[],"rop_publish_now":"initial","rop_publish_now_accounts":[],"rop_publish_now_history":[],"rop_publish_now_status":"pending","footnotes":""},"categories":[36],"tags":[1352,1349,1350,1353,341,339,1351,1238,1348,1347],"class_list":["post-3146","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-kubernetes","tag-azure-kubernetes-service-aks","tag-constellation","tag-first-always-encrypted-kubernetes-engine","tag-google-kubernetes-service-gks","tag-kubernetes-consulting-company","tag-kubernetes-consulting-services","tag-kubernetes-engine","tag-kubernetes-experts","tag-kubernetes-partners","tag-kubernetes-providers"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v25.3.1 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Constellation: An overview of the first always-encrypted Kubernetes engine<\/title>\n<meta name=\"description\" content=\"Constellation is the first open source Kubernetes that is always encrypted. Let&#039;s know more details on this Kubernetes engine.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.urolime.com\/blogs\/constellation-an-overview-of-the-first-always-encrypted-kubernetes-engine\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Constellation: An overview of the first always-encrypted Kubernetes engine\" \/>\n<meta property=\"og:description\" content=\"Constellation is the first open source Kubernetes that is always encrypted. Let&#039;s know more details on this Kubernetes engine.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.urolime.com\/blogs\/constellation-an-overview-of-the-first-always-encrypted-kubernetes-engine\/\" \/>\n<meta property=\"og:site_name\" content=\"Urolime Blogs\" \/>\n<meta property=\"article:published_time\" content=\"2022-12-12T07:32:45+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2022-12-13T09:22:34+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.urolime.com\/blogs\/wp-content\/uploads\/2022\/12\/constellation.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1200\" \/>\n\t<meta property=\"og:image:height\" content=\"675\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Urolime Technologies\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Urolime Technologies\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.urolime.com\/blogs\/constellation-an-overview-of-the-first-always-encrypted-kubernetes-engine\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.urolime.com\/blogs\/constellation-an-overview-of-the-first-always-encrypted-kubernetes-engine\/\"},\"author\":{\"name\":\"Urolime Technologies\",\"@id\":\"https:\/\/www.urolime.com\/blogs\/#\/schema\/person\/c231f59d5f2c2516e0efc6067ee0c22c\"},\"headline\":\"Constellation: An overview of the first always-encrypted Kubernetes engine\",\"datePublished\":\"2022-12-12T07:32:45+00:00\",\"dateModified\":\"2022-12-13T09:22:34+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.urolime.com\/blogs\/constellation-an-overview-of-the-first-always-encrypted-kubernetes-engine\/\"},\"wordCount\":798,\"publisher\":{\"@id\":\"https:\/\/www.urolime.com\/blogs\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.urolime.com\/blogs\/constellation-an-overview-of-the-first-always-encrypted-kubernetes-engine\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.urolime.com\/blogs\/wp-content\/uploads\/2022\/12\/constellation.jpg\",\"keywords\":[\"Azure Kubernetes Service (AKS)\",\"Constellation\",\"First always-encrypted Kubernetes engine\",\"Google Kubernetes Service (GKS)\",\"Kubernetes Consulting Company\",\"Kubernetes Consulting Services\",\"Kubernetes engine\",\"Kubernetes Experts\",\"Kubernetes partners\",\"Kubernetes providers\"],\"articleSection\":[\"Kubernetes\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.urolime.com\/blogs\/constellation-an-overview-of-the-first-always-encrypted-kubernetes-engine\/\",\"url\":\"https:\/\/www.urolime.com\/blogs\/constellation-an-overview-of-the-first-always-encrypted-kubernetes-engine\/\",\"name\":\"Constellation: An overview of the first always-encrypted Kubernetes engine\",\"isPartOf\":{\"@id\":\"https:\/\/www.urolime.com\/blogs\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.urolime.com\/blogs\/constellation-an-overview-of-the-first-always-encrypted-kubernetes-engine\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.urolime.com\/blogs\/constellation-an-overview-of-the-first-always-encrypted-kubernetes-engine\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.urolime.com\/blogs\/wp-content\/uploads\/2022\/12\/constellation.jpg\",\"datePublished\":\"2022-12-12T07:32:45+00:00\",\"dateModified\":\"2022-12-13T09:22:34+00:00\",\"description\":\"Constellation is the first open source Kubernetes that is always encrypted. Let's know more details on this Kubernetes engine.\",\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.urolime.com\/blogs\/constellation-an-overview-of-the-first-always-encrypted-kubernetes-engine\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.urolime.com\/blogs\/constellation-an-overview-of-the-first-always-encrypted-kubernetes-engine\/#primaryimage\",\"url\":\"https:\/\/www.urolime.com\/blogs\/wp-content\/uploads\/2022\/12\/constellation.jpg\",\"contentUrl\":\"https:\/\/www.urolime.com\/blogs\/wp-content\/uploads\/2022\/12\/constellation.jpg\",\"width\":1200,\"height\":675,\"caption\":\"Constellation: An overview of the first always-encrypted Kubernetes engine\"},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.urolime.com\/blogs\/#website\",\"url\":\"https:\/\/www.urolime.com\/blogs\/\",\"name\":\"Urolime Blogs\",\"description\":\"The place for DevOps, Cloud, Kubernetes News and Updates\",\"publisher\":{\"@id\":\"https:\/\/www.urolime.com\/blogs\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.urolime.com\/blogs\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.urolime.com\/blogs\/#organization\",\"name\":\"Urolime Blogs\",\"url\":\"https:\/\/www.urolime.com\/blogs\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.urolime.com\/blogs\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.urolime.com\/blogs\/wp-content\/uploads\/2021\/06\/cropped-250-x250.jpg\",\"contentUrl\":\"https:\/\/www.urolime.com\/blogs\/wp-content\/uploads\/2021\/06\/cropped-250-x250.jpg\",\"width\":250,\"height\":73,\"caption\":\"Urolime Blogs\"},\"image\":{\"@id\":\"https:\/\/www.urolime.com\/blogs\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.urolime.com\/blogs\/#\/schema\/person\/c231f59d5f2c2516e0efc6067ee0c22c\",\"name\":\"Urolime Technologies\",\"description\":\"Urolime Technologies has made groundbreaking accomplishments in the field of Google Cloud &amp; Kubernetes Consulting, DevOps Services, 24\/7 Managed Services &amp; Support, Dedicated IT Team, Managed AWS Consulting and Azure Cloud Consulting. We believe our customers are Smart to choose their IT Partner, and we \u201cDo IT Smart\u201d.\",\"sameAs\":[\"https:\/\/www.urolime.com\/\"],\"url\":\"https:\/\/www.urolime.com\/blogs\/author\/blogadmin\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Constellation: An overview of the first always-encrypted Kubernetes engine","description":"Constellation is the first open source Kubernetes that is always encrypted. Let's know more details on this Kubernetes engine.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.urolime.com\/blogs\/constellation-an-overview-of-the-first-always-encrypted-kubernetes-engine\/","og_locale":"en_US","og_type":"article","og_title":"Constellation: An overview of the first always-encrypted Kubernetes engine","og_description":"Constellation is the first open source Kubernetes that is always encrypted. Let's know more details on this Kubernetes engine.","og_url":"https:\/\/www.urolime.com\/blogs\/constellation-an-overview-of-the-first-always-encrypted-kubernetes-engine\/","og_site_name":"Urolime Blogs","article_published_time":"2022-12-12T07:32:45+00:00","article_modified_time":"2022-12-13T09:22:34+00:00","og_image":[{"width":1200,"height":675,"url":"https:\/\/www.urolime.com\/blogs\/wp-content\/uploads\/2022\/12\/constellation.jpg","type":"image\/jpeg"}],"author":"Urolime Technologies","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Urolime Technologies","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.urolime.com\/blogs\/constellation-an-overview-of-the-first-always-encrypted-kubernetes-engine\/#article","isPartOf":{"@id":"https:\/\/www.urolime.com\/blogs\/constellation-an-overview-of-the-first-always-encrypted-kubernetes-engine\/"},"author":{"name":"Urolime Technologies","@id":"https:\/\/www.urolime.com\/blogs\/#\/schema\/person\/c231f59d5f2c2516e0efc6067ee0c22c"},"headline":"Constellation: An overview of the first always-encrypted Kubernetes engine","datePublished":"2022-12-12T07:32:45+00:00","dateModified":"2022-12-13T09:22:34+00:00","mainEntityOfPage":{"@id":"https:\/\/www.urolime.com\/blogs\/constellation-an-overview-of-the-first-always-encrypted-kubernetes-engine\/"},"wordCount":798,"publisher":{"@id":"https:\/\/www.urolime.com\/blogs\/#organization"},"image":{"@id":"https:\/\/www.urolime.com\/blogs\/constellation-an-overview-of-the-first-always-encrypted-kubernetes-engine\/#primaryimage"},"thumbnailUrl":"https:\/\/www.urolime.com\/blogs\/wp-content\/uploads\/2022\/12\/constellation.jpg","keywords":["Azure Kubernetes Service (AKS)","Constellation","First always-encrypted Kubernetes engine","Google Kubernetes Service (GKS)","Kubernetes Consulting Company","Kubernetes Consulting Services","Kubernetes engine","Kubernetes Experts","Kubernetes partners","Kubernetes providers"],"articleSection":["Kubernetes"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.urolime.com\/blogs\/constellation-an-overview-of-the-first-always-encrypted-kubernetes-engine\/","url":"https:\/\/www.urolime.com\/blogs\/constellation-an-overview-of-the-first-always-encrypted-kubernetes-engine\/","name":"Constellation: An overview of the first always-encrypted Kubernetes engine","isPartOf":{"@id":"https:\/\/www.urolime.com\/blogs\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.urolime.com\/blogs\/constellation-an-overview-of-the-first-always-encrypted-kubernetes-engine\/#primaryimage"},"image":{"@id":"https:\/\/www.urolime.com\/blogs\/constellation-an-overview-of-the-first-always-encrypted-kubernetes-engine\/#primaryimage"},"thumbnailUrl":"https:\/\/www.urolime.com\/blogs\/wp-content\/uploads\/2022\/12\/constellation.jpg","datePublished":"2022-12-12T07:32:45+00:00","dateModified":"2022-12-13T09:22:34+00:00","description":"Constellation is the first open source Kubernetes that is always encrypted. Let's know more details on this Kubernetes engine.","inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.urolime.com\/blogs\/constellation-an-overview-of-the-first-always-encrypted-kubernetes-engine\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.urolime.com\/blogs\/constellation-an-overview-of-the-first-always-encrypted-kubernetes-engine\/#primaryimage","url":"https:\/\/www.urolime.com\/blogs\/wp-content\/uploads\/2022\/12\/constellation.jpg","contentUrl":"https:\/\/www.urolime.com\/blogs\/wp-content\/uploads\/2022\/12\/constellation.jpg","width":1200,"height":675,"caption":"Constellation: An overview of the first always-encrypted Kubernetes engine"},{"@type":"WebSite","@id":"https:\/\/www.urolime.com\/blogs\/#website","url":"https:\/\/www.urolime.com\/blogs\/","name":"Urolime Blogs","description":"The place for DevOps, Cloud, Kubernetes News and Updates","publisher":{"@id":"https:\/\/www.urolime.com\/blogs\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.urolime.com\/blogs\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.urolime.com\/blogs\/#organization","name":"Urolime Blogs","url":"https:\/\/www.urolime.com\/blogs\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.urolime.com\/blogs\/#\/schema\/logo\/image\/","url":"https:\/\/www.urolime.com\/blogs\/wp-content\/uploads\/2021\/06\/cropped-250-x250.jpg","contentUrl":"https:\/\/www.urolime.com\/blogs\/wp-content\/uploads\/2021\/06\/cropped-250-x250.jpg","width":250,"height":73,"caption":"Urolime Blogs"},"image":{"@id":"https:\/\/www.urolime.com\/blogs\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/www.urolime.com\/blogs\/#\/schema\/person\/c231f59d5f2c2516e0efc6067ee0c22c","name":"Urolime Technologies","description":"Urolime Technologies has made groundbreaking accomplishments in the field of Google Cloud &amp; Kubernetes Consulting, DevOps Services, 24\/7 Managed Services &amp; Support, Dedicated IT Team, Managed AWS Consulting and Azure Cloud Consulting. We believe our customers are Smart to choose their IT Partner, and we \u201cDo IT Smart\u201d.","sameAs":["https:\/\/www.urolime.com\/"],"url":"https:\/\/www.urolime.com\/blogs\/author\/blogadmin\/"}]}},"_links":{"self":[{"href":"https:\/\/www.urolime.com\/blogs\/wp-json\/wp\/v2\/posts\/3146","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.urolime.com\/blogs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.urolime.com\/blogs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.urolime.com\/blogs\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.urolime.com\/blogs\/wp-json\/wp\/v2\/comments?post=3146"}],"version-history":[{"count":1,"href":"https:\/\/www.urolime.com\/blogs\/wp-json\/wp\/v2\/posts\/3146\/revisions"}],"predecessor-version":[{"id":3148,"href":"https:\/\/www.urolime.com\/blogs\/wp-json\/wp\/v2\/posts\/3146\/revisions\/3148"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.urolime.com\/blogs\/wp-json\/wp\/v2\/media\/3147"}],"wp:attachment":[{"href":"https:\/\/www.urolime.com\/blogs\/wp-json\/wp\/v2\/media?parent=3146"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.urolime.com\/blogs\/wp-json\/wp\/v2\/categories?post=3146"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.urolime.com\/blogs\/wp-json\/wp\/v2\/tags?post=3146"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}