Technical design documents and architecture details for the Dstack TEE platform.
The evolution of trust models from Web2 to Web3, highlighting the shift from centralized control to decentralized governance and execution.
The architecture of dstack, including dstack-os, dstack-kms and dstack-gateway.
The key derivation hierarchy of Intel SGX illustrates how conventional TEE implementations bind encryption keys to hardware.
The architecture of dstack-kms combines on-chain governance through smart contracts with an off-chain P2P network of secret derivation service nodes. This design ensures both verifiability and resilience against compromise.
The architecture of dstack-os establishes a secure and verifiable startup chain from TEE hardware through to user applications.
The architecture of decentralized code management integrates on-chain governance contracts with off-chain TEE through dstack-kms.
The Zero Trust TLS architecture establishes a cryptographically verifiable connection between standard web browsers and TEE applications through blockchain-anchored certificate management.