Give hackers no chance –
work with
We enable secure execution of containers and programs using Intel SGX.
Tell Me More

SCONE in a nutshell

Overview of SCONE's unique features

  • transparent encryption icon



    SCONE can transparently encrypt files and network traffic and in this way, it protects data from unauthorized access via the operating system, the hypervisor or any software.

  • transparent attestation


    attestation of programs

    SCONE transparently attests programs to ensure that only the correct, unmodified programs are executing in a genuine SGX enclave. This also prevents malware to attach to programs.

  • curated images icon



    SCONE supports curated images for many popular services like Vault, memcached, Apache, MySQL, etc.

  • configuration with secrets icon


    compose files

    SCONE supports secure compose files to protect secrets that are visible in Docker compose and stack files as well as Kubernetes metadata files.

  • secure enclaves icon

    Simplifying the use

    of secure enclaves

    SCONE executes programs inside secure enclaves - without requiring source code changes. We recommend to recompile applications but we support executing native Alpine applications inside containers. In this way, we are preventing even attackers with root access from stealing secrets from these programs.

  • compose file icon

    Transparent configuration

    with secrets

    SCONE helps to configure programs with secrets that can neither be read nor modified by attackers - even if they would have already taken control of the operating system and/or the hypervisor. This is transparent to the application, i.e., does not require any source code changes.

SCONE features

SCONE's unique features explained

application-oriented security

Application-Oriented Security

Ensure application security even in untrusted environments

SGX encrypts main memory

Intel SGX Support

Encrypted main memory with Intel SGX ensures confidentialitiy and integrity

Scone Language Support

Cross-Compiler support

SCONE support cross-compilers for C, C++, Rust, Go and an interpreter for Python

Supporting Docker Compose and Stack

Docker and Kubernetes

Support of Stack and Compose files to deploy an application and provide with secrets

Scone-based shielding


Supports transparent encryption of files and network traffic

Scone Curated images

Curated Container Images

SCONE supports a set of standard services like nginx, etc

Technical Documentation

We provide developer-/operations-oriented documentation as well as scientific papers


Tutorial and technical details

Docker-based Scone Documentation


We provide Docker container image of the SCONE documentation



We published several papers related to SCONE. A good starting point to read is our OSDI 2016 paper


We offer our customers different service levels

Community/Evaluation Edition

  • Services run inside of enclaves in pre-release mode
  • Visible memory content of enclaves with appropriate debugger
Get community now
Standard Edition
ask €/year

  • Services run inside of enclaves - without the possibility of inspections
  • Business day support
  • Consulting
  • Priority support 24x7
Get standard now
Business Edition
ask €/year

  • Services run inside of enclaves - without the possibility of inspections
  • Business day support
  • Consulting
  • Priority support 24x7
Get Business now

The Scone Team

Meet the founders: we have assembled an unprecedented level of hands-on talent under the roof.

Prof. Dr. Christof Fetzer

Co-Founder & COO, Trustworthy Systems Guru

Franz Gregor

Co-Founder, Shield Execution Expert

Sergei Arnautov

Co-Founder, Lead Runtime Developer

Dr. Do Le Quoc

Co-Founder, Application, AI Frameworks, Blockchain

Dr. Karin Fetzer

Co-Founder & interim CEO, Software Developer


Want to work with us? Click .

Contact Us

If you are interested in the SCONE platform, SCONE curated images or if you want to work for us, please use the contact box below or send email to

Send Message