MarbleRun is an open-source orchestration framework for clusters of Intel SGX enclaves. It functions as a service mesh layer for confidential computing environments, handling the coordination and security of enclave-based microservices deployments. Core capabilities include: - Remote attestation: Generates a single, unified attestation statement for an entire deployment, verifying that it conforms to a defined manifest. - Key management: Securely distributes and manages cryptographic keys for enclave workloads, including secret provisioning. - Mutual TLS (mTLS): Establishes encrypted and authenticated communication channels between enclaves. - Secure recovery: Supports recovery mechanisms for enclave deployments. - Manifest-based policy: Deployments are defined and governed through a JSON manifest, which is enforced at runtime. MarbleRun is compatible with SGX-enabled Kubernetes clusters (including Azure Kubernetes Service) and can also be run standalone. It supports enclaves built with Gramine, EGo, and Occlum runtimes. The CLI is used to install MarbleRun and apply manifests. The product is designed to simplify the deployment of confidential computing workloads such as AI pipelines and big data processing on sensitive data in cloud environments. Edgeless Systems also provides enterprise support for MarbleRun.