# dstack

## Docs

- [Community & Ecosystem](https://phalanetwork.mintlify.app/docs/community-section/community.md): Engage with the dstack community, contribute to development, and access collaborative resources
- [Contributing to dstack](https://phalanetwork.mintlify.app/docs/community-section/contribution.md): It's the easiest way to deploy existing Docker applications to Trusted Execution Environments with hardware-enforced security
- [System Architecture](https://phalanetwork.mintlify.app/docs/concepts/architecture.md): Deep dive into dstack's layered architecture and component interactions
- [High Level Component Overview](https://phalanetwork.mintlify.app/docs/concepts/basic-components.md)
- [Gateway Core](https://phalanetwork.mintlify.app/docs/concepts/core-gateway.md): explains the operational features, security mechanisms, and configuration of the dstack-gateway component, including its role in TLS termination, WireGuard VPN management, domain-based routing, and integration with cluster synchronization and authorization services.
- [Component Glossary](https://phalanetwork.mintlify.app/docs/concepts/core-glossary.md): Deep dive into dstack's essential components and their roles
- [Guest-Agent Core](https://phalanetwork.mintlify.app/docs/concepts/core-guest-agent.md): Deep dive into dstack's essential components and their roles
- [KMS Core](https://phalanetwork.mintlify.app/docs/concepts/core-kms.md): Comprehensive technical deep dive into dstack's Key Management Service - the critical security and governance layer
- [DStack-OS Core](https://phalanetwork.mintlify.app/docs/concepts/core-os.md): Deep dive into dstack's operating system core components, guest agent architecture, and secure boot implementation
- [DStack-Util Core](https://phalanetwork.mintlify.app/docs/concepts/core-tdxctl.md): Complete guide to dstack's TDX control utility, system setup, and cryptographic services for secure computing environments
- [VMM Core](https://phalanetwork.mintlify.app/docs/concepts/core-vmm.md): details the configuration, interfaces, and orchestration role of the dstack virtual machine manager (VMM), including its integration with gateway services and secure workload management.
- [Networking Architecture](https://phalanetwork.mintlify.app/docs/concepts/networking.md): dstack implements a sophisticated networking model to ensure secure, isolated, and high-performance communication between all components. This page walks you through how networking works in dstack, from routing external HTTPS traffic to managing secure connections inside confidential VMs.
- [Component Summary](https://phalanetwork.mintlify.app/docs/concepts/overview.md): dstack is an open-source platform that transforms any Docker container into a secure Trusted Execution Environment (TEE) deployment with zero code changes. This overview introduces the fundamental concepts and guides you to the detailed documentation you need.
- [Full Dstack Deployment Guide](https://phalanetwork.mintlify.app/docs/getting-started/first-deployment-steps/advanced-deloyment-steps/deployment-of-dstack-advanced.md): Originally Authored, by Kevin Wang edited by Dylan Kawalec from Phala Network
- [Step 1: Clone and Setup Repository](https://phalanetwork.mintlify.app/docs/getting-started/first-deployment-steps/advanced-deloyment-steps/deployment-step-1.md): Clone the DStack repository
- [Step 2: Compile and Run dstack-vmm](https://phalanetwork.mintlify.app/docs/getting-started/first-deployment-steps/advanced-deloyment-steps/deployment-step-2.md): Compile and run dstack-vmm
- [Step 3: Deploy the KmsAuth Contract](https://phalanetwork.mintlify.app/docs/getting-started/first-deployment-steps/advanced-deloyment-steps/deployment-step-3.md): Deploy the KmsAuth Contract
- [Step 4: Deploy KMS into CVM](https://phalanetwork.mintlify.app/docs/getting-started/first-deployment-steps/advanced-deloyment-steps/deployment-step-4.md): Deploy KMS into CVM
- [Step 5: Deploy dstack-gateway in CVM](https://phalanetwork.mintlify.app/docs/getting-started/first-deployment-steps/advanced-deloyment-steps/deployment-step-5.md): Deploy dstack-gateway in CVM
- [Step 6: Deploy Additional VMM Instances](https://phalanetwork.mintlify.app/docs/getting-started/first-deployment-steps/advanced-deloyment-steps/deployment-step-6.md): Deploy Additional VMM Instances
- [Step 7: Deploy Applications](https://phalanetwork.mintlify.app/docs/getting-started/first-deployment-steps/advanced-deloyment-steps/deployment-step-7.md): Deploy Applications
- [How to Pull & inspect the example container image](https://phalanetwork.mintlify.app/docs/getting-started/first-deployment-steps/fd-1.md): Prepare your application for deployment
- [How to Write the dstack deployment manifest](https://phalanetwork.mintlify.app/docs/getting-started/first-deployment-steps/fd-2.md): Create a docker-compose.yml file
- [How to Sign & push the image to your private registry](https://phalanetwork.mintlify.app/docs/getting-started/first-deployment-steps/fd-3.md): Deploy via Web UI & Monitor with CLI Tools
- [How to Verify a TDX Attestation & perform a remote proof of trust](https://phalanetwork.mintlify.app/docs/getting-started/first-deployment-steps/fd-5.md): Access Your Application
- [Expose an API endpoint via the Gateway](https://phalanetwork.mintlify.app/docs/getting-started/first-deployment-steps/fd-6.md): Verify Security & Attestation
- [How to Update, roll back, and tear down safely](https://phalanetwork.mintlify.app/docs/getting-started/first-deployment-steps/fd-7.md): Monitor Your Application
- [Application Deployment Overview](https://phalanetwork.mintlify.app/docs/getting-started/first-deployment-steps/first-deployment.md): A practical walkthrough for deploying secure applications on your dstack infrastructure
- [Getting Started Now](https://phalanetwork.mintlify.app/docs/getting-started/install/app-jupiter-guide.md): this is how you and a remote host can quickly deploy apps to dstack
- [Installation](https://phalanetwork.mintlify.app/docs/getting-started/install/installation.md): Start here to install dstack. Follow the step-by-step guide to set up your environment.
- [Step 1: Prerequisites & System Requirements](https://phalanetwork.mintlify.app/docs/getting-started/install/step-1-prerequisites.md): Check hardware, OS, and software requirements before installing dstack.
- [Step 2: Update Your Server for dstack Installation](https://phalanetwork.mintlify.app/docs/getting-started/install/step-2-update-server.md): Apply all available updates and security patches to prepare your system for dstack.
- [Step 3 – Install Required Packages for dstack](https://phalanetwork.mintlify.app/docs/getting-started/install/step-3-install-required-packages.md): Install kernel headers, development tools, Rust, and WireGuard so your host can build and run dstack securely.
- [Step 4 – Build and Run dstack components](https://phalanetwork.mintlify.app/docs/getting-started/install/step-4-install-dstack-runtime.md): Build the dstack components, start the core services, and verify everything in the UI.
- [Start deploying apps with dstack](https://phalanetwork.mintlify.app/docs/getting-started/start.md): Configure your dstack environment and prepare for secure application deployment
- [Getting Started](https://phalanetwork.mintlify.app/docs/index.md): Easily build and deploy containerized apps to your own confidential virtual machine using the dstack framework
- [Value Add](https://phalanetwork.mintlify.app/docs/overview/benefits.md): How dstack shrinks security risk, audit toil, and time‑to‑market—without changing your workflow.
- [Terms / Glossary](https://phalanetwork.mintlify.app/docs/overview/glossary.md): An authoritative reference for every core concept, component, and cryptographic primitive that powers the dstack confidential-computing platform.
- [What is DStack?](https://phalanetwork.mintlify.app/docs/overview/introduction.md): DStack lets you run your apps in a secure, private environment that no one else can access or tamper with - not even cloud providers or system administrators. Think of it as a protective bubble for your applications.
- [TDX Technology](https://phalanetwork.mintlify.app/docs/overview/key-features.md): DStack brings confidential computing to everyday development workflows without forcing teams to rewrite code or rethink their toolchains. Here are the features that make secure deployment simple and powerful.
- [DStack Architecture](https://phalanetwork.mintlify.app/docs/overview/what-is-dstack.md): How DStack's components work together to create secure, verifiable applications using Intel TDX technology
- [Security Modules](https://phalanetwork.mintlify.app/docs/security-research/extra-sec-ops/before-reading.md): Summary and navigation for supplementary security modules in dstack
- [Cert Client Security](https://phalanetwork.mintlify.app/docs/security-research/extra-sec-ops/cert-client-security.md): Certificate verification and client-side attestation integration in dstack
- [Certbot TEE Security](https://phalanetwork.mintlify.app/docs/security-research/extra-sec-ops/certbot-security.md): Analysis of automated certificate management and ACME protocol implementation in dstack TEE
- [CT Monitor Security](https://phalanetwork.mintlify.app/docs/security-research/extra-sec-ops/ct-monitor-security.md): Certificate Transparency monitoring and anomaly detection for dstack TEE infrastructure
- [Host API Security](https://phalanetwork.mintlify.app/docs/security-research/extra-sec-ops/host-api-security.md): Secure host management and orchestration API for dstack TEE infrastructure
- [IOHash Security Architecture](https://phalanetwork.mintlify.app/docs/security-research/extra-sec-ops/iohash-security.md): Content-addressed storage and cryptographic integrity verification for dstack
- [Gateway Attestation and Verification Mechanisms](https://phalanetwork.mintlify.app/docs/security-research/gate/gate-attestation-verification.md): Technical implementation details of attestation verification, quote validation, and continuous security monitoring in the dstack gateway
- [Gateway CVM Registration and Attestation](https://phalanetwork.mintlify.app/docs/security-research/gate/gate-cvm-registration.md): Secure registration process for confidential virtual machines with remote attestation and WireGuard network configuration
- [Gateway Implementation Security Details](https://phalanetwork.mintlify.app/docs/security-research/gate/gate-implementation.md): Detailed technical implementation of gateway security features, network protocols, and system architecture components
- [Gateway Connection Strategies and Load Balancing](https://phalanetwork.mintlify.app/docs/security-research/gate/gate-load-balancing.md): Advanced load balancing algorithms and connection management strategies for confidential virtual machine clusters
- [Gateway Cryptographic Implementation and Security Notes](https://phalanetwork.mintlify.app/docs/security-research/gate/gate-notes.md): Comprehensive notes on cryptographic security implementation, TLS configuration, and security architecture principles in dstack gateway
- [Gateway Security Overview](https://phalanetwork.mintlify.app/docs/security-research/gate/gate-overview.md): Comprehensive overview of dstack's secure gateway architecture with automated certificate management
- [Gateway Cluster State Synchronization](https://phalanetwork.mintlify.app/docs/security-research/gate/gate-state-sync.md): Distributed state management and secure synchronization protocols for gateway clusters in dstack
- [KMS Verification and Audit Procedures](https://phalanetwork.mintlify.app/docs/security-research/kms/kms-audit-procedures.md): How dStack KMS enables independent auditing, measurement validation, and cryptographic assurance.
- [KMS Blockchain Integration](https://phalanetwork.mintlify.app/docs/security-research/kms/kms-blockchain-integration.md): How dStack KMS leverages blockchain for decentralized authorization and policy enforcement.
- [KMS Certificate Management and RA-TLS](https://phalanetwork.mintlify.app/docs/security-research/kms/kms-cert-manager.md): How dStack KMS uses RA-TLS and custom X.509 extensions to embed attestation and enforce certificate trust.
- [KMS Cryptographic Implementation Details](https://phalanetwork.mintlify.app/docs/security-research/kms/kms-implementation.md): Technical deep dive into the cryptographic key hierarchy and secure key generation in dStack KMS.
- [KMS Security Overview](https://phalanetwork.mintlify.app/docs/security-research/kms/kms-overview.md): Comprehensive introduction to dStack's decentralized, hardware-backed Key Management Service (KMS) and its security architecture.
- [KMS Security: Performance, Best Practices, and Threat Model](https://phalanetwork.mintlify.app/docs/security-research/kms/kms-security.md): Comprehensive overview of dStack KMS security posture, operational best practices, and threat model.
- [KMS Security Architecture Details](https://phalanetwork.mintlify.app/docs/security-research/kms/kms-security-arch.md): How dStack KMS uses hardware-backed key derivation and a robust trust model to secure key management.
- [KMS Security Properties and Guarantees](https://phalanetwork.mintlify.app/docs/security-research/kms/kms-security-props.md): The cryptographic guarantees and attack resistance features of dStack KMS.
- [Security & Research Section](https://phalanetwork.mintlify.app/docs/security-research/overview.md): Deep technical analysis of dstack's security architecture for researchers and security engineers
- [Cryptography](https://phalanetwork.mintlify.app/docs/security-research/security-model.md): Complete reference for cryptographic primitives, libraries, and security mechanisms in dStack
- [TDX Cryptographic Implementation Details](https://phalanetwork.mintlify.app/docs/security-research/tdx-att/tdx-implementation.md): Technical deep dive into the cryptographic primitives and implementation details of dStack's TDX attestation.
- [TDX Integration Security and Guest Agent](https://phalanetwork.mintlify.app/docs/security-research/tdx-att/tdx-integration-review.md): How dStack integrates TDX attestation into real-world deployments, focusing on the guest agent and KMS workflows.
- [TDX Attestation Overview](https://phalanetwork.mintlify.app/docs/security-research/tdx-att/tdx-overview.md): Comprehensive introduction to dStack's Intel TDX attestation implementation and its security guarantees.
- [TDX Quote Generation and Verification](https://phalanetwork.mintlify.app/docs/security-research/tdx-att/tdx-quote-gen.md): In-depth explanation of how TDX quotes are generated, bound, and verified in dStack.
- [TDX Security Architecture](https://phalanetwork.mintlify.app/docs/security-research/tdx-att/tdx-security-arch.md): Detailed breakdown of the security architecture underpinning dStack's TDX attestation.
- [TDX Threat Model and Security Guarantees](https://phalanetwork.mintlify.app/docs/security-research/tdx-att/tdx-threat-model-garentees.md): A detailed look at the threat model, what dStack's TDX attestation protects against, and the guarantees it provides.
- [TDX Verification Security Model](https://phalanetwork.mintlify.app/docs/security-research/tdx-att/tdx-verification-model.md): Comprehensive explanation of the verification process and security model for TDX attestation in dStack.
- [VMM Attestation and Verification Mechanisms](https://phalanetwork.mintlify.app/docs/security-research/vmm/vmm-attestation-and-verification.md): How dStack VMM validates TDX quotes, replays event logs, and enforces policy for runtime trust.
- [VMM Resource Protection and DoS Prevention](https://phalanetwork.mintlify.app/docs/security-research/vmm/vmm-dos-protection.md): How dStack VMM enforces resource isolation, input validation, and API security to prevent denial-of-service and resource exhaustion attacks.
- [VMM Implementation Security Details](https://phalanetwork.mintlify.app/docs/security-research/vmm/vmm-implementation.md): How dStack VMM enforces device, memory, and communication isolation to protect confidential workloads.
- [VMM Integration Security Architecture](https://phalanetwork.mintlify.app/docs/security-research/vmm/vmm-integration-arch.md): How dStack VMM integrates with KMS, gateway, and certificate management for end-to-end security.
- [VMM Key Management Integration](https://phalanetwork.mintlify.app/docs/security-research/vmm/vmm-key-management.md): How dStack VMM provisions, manages, and secures cryptographic keys and certificates for confidential workloads.
- [VMM Security Overview](https://phalanetwork.mintlify.app/docs/security-research/vmm/vmm-overview.md): Comprehensive introduction to dStack's Virtual Machine Monitor (VMM) and its role in confidential computing security.
- [VMM Security Verification Procedures](https://phalanetwork.mintlify.app/docs/security-research/vmm/vmm-procedures.md): How dStack VMM validates measurements, maintains a cryptographic chain of trust, and supports third-party verification.
- [TDX Measurement and Attestation in VMM](https://phalanetwork.mintlify.app/docs/security-research/vmm/vmm-tdx-attestation-and-measurement.md): How dStack VMM builds and verifies a chain of trust using Intel TDX measurement and attestation.
- [Quick dstack Guide](https://phalanetwork.mintlify.app/docs/tutorials/index-quick-start.md): Fastest way to learn and deploy with dstack
- [Run basic Express.js in a TEE with Node.js](https://phalanetwork.mintlify.app/docs/tutorials/javascript-example.md): Deploy a Node.js Express API to dstack TEE infrastructure using a pre-built container
- [Deploy a FastAPI Python Script in a TEE with dstack](https://phalanetwork.mintlify.app/docs/tutorials/python-example.md): Deploy a Python application to dstack TEE infrastructure using existing containers
- [Deploy a Tokio API in a TEE with dstack](https://phalanetwork.mintlify.app/docs/tutorials/rust-example.md): Guide to deploying a Rust web API in a Trusted Execution Environment (TEE) using dstack and Docker Compose
- [Tool Deployment Tutorials](https://phalanetwork.mintlify.app/docs/tutorials/super-quick-start.md): dstack enables you to take any Docker container and deploy it as a hardware-secured TEE application with no code changes, special SDKs, or infrastructure setup required. To get started, simply choose a tutorial that matches your technology stack, copy the provided code into your preferred code edito…

## OpenAPI Specs

- [openapi](https://phalanetwork.mintlify.app/api-reference/openapi.json)