Blog
Notes from the build.
Short, plain-English writing on backend systems, Linux automation, and the awkward seams where they meet — written while the work is still fresh.
Most posts here come out of work I’m already doing — IBM Confidential Computing, Terraform providers, Go SDKs, and the Linux automation that holds it all together. The goal is to leave behind the kind of write-up I wish I’d found before I started: enough technical depth to actually use, with the trade-offs and dead-ends still in.
Topics rotate through confidential computing, Terraform provider development, Go for systems work, and Linux internals. Cadence is irregular and on purpose — posts ship when the underlying work is solid, not on a calendar.
Building the IBM Confidential Computing Contract Toolchain
Why we built contract-go, contract-cli, and a Terraform provider — and what that meant for shipping confidential workloads on IBM Confidential Computing products without anyone hand-rolling cryptography.
GoTerraform ProviderConfidential ComputingOpen SourceConfidential Computing: Securing Data During Processing
A practical introduction to confidential computing: why encryption at rest and in transit are not enough, what trusted execution environments add, and where the technology fits.
Confidential ComputingSecurityCloud