Blog
Notes from the build.
Short, plain-English writing on backend systems, Linux automation, and the awkward seams where they meet — written while the work is still fresh.
Most posts here come out of work I’m already doing — IBM Confidential Computing, Terraform providers, Go SDKs, and the Linux automation that holds it all together. The goal is to leave behind the kind of write-up I wish I’d found before I started: enough technical depth to actually use, with the trade-offs and dead-ends still in.
Topics rotate through confidential computing, Terraform provider development, Go for systems work, and Linux internals. Cadence is irregular and on purpose — posts ship when the underlying work is solid, not on a calendar.
Building the IBM Confidential Computing Contract Toolchain
Why we built contract-go, contract-cli, and a Terraform provider to ship confidential workloads on IBM Confidential Computing without hand-rolling crypto.
GoTerraform ProviderConfidential ComputingOpen Source
Confidential Computing: Securing Data During Processing
Why encryption at rest and in transit aren't enough, what trusted execution environments add, and where confidential computing fits.
Confidential ComputingSecurityCloud