Google Cloud Platform
Polaris Pro offers an official Terraform module for deploying on Google Cloud Platform with enhanced security features. This module provisions a secure Confidential VM with AMD SEV-SNP technology, Cloud KMS integration, and workload identity federation for superior key protection.
For Polaris Pro deployments, the Cloud KMS integration should be enabled:
enable_kms = true
Accessing the Module
The module is available on the Terraform Registry:
Terraform Registry - Fr0ntierX/polaris/google
module "polaris_pro" {
source = "Fr0ntierX/polaris/google"
# Basic Configuration
project_id = "my-project"
name = "polaris-pro-instance"
region = "us-central1"
zone = "us-central1-a"
# VM Configuration
machine_type = "n2d-standard-2"
service_account = "[email protected]"
# Workload Configuration
workload_image = "fr0ntierx/anonymization-service"
# Polaris Proxy Configuration
polaris_proxy_port = "3000"
polaris_proxy_enable_input_encryption = true
polaris_proxy_enable_output_encryption = true
polaris_proxy_enable_cors = true
# Polaris Pro Security Configuration
enable_kms = true
}
Available Features
| Feature | Description |
|---|---|
| Cloud KMS Integration | HSM-backed asymmetric decryption keys |
| Workload Identity Federation | Secure identity management for service access |
| TPM-based Attestation | Hardware-based attestation for key access |
| Persistent Key Management | Long-term key storage with hardware protection |
Learn More
For detailed configuration options and examples, refer to: