Confidential Computing continues as the emerging area to address data sovereignty and data-in-use-protection. 
On IBM LinuxONE and Linux on IBM Z the underlaying technology IBM Secure Execution is further evolving with new features and capabilities.

While more enterprise use cases are identified it remains key that solution stacks take advantage of this technology and simplify end-to-end usage to foster adoption. This is what the IBM Hyper Protect Platform aims to provide jointly with the support of our partners like SUSE and their SLE BCI Containers library: 
https://documentation.suse.com/container/all/single-html/Container-guide/#sec-sle-container-sle-host-support

Recently the Technical Reference Documentation has been updated by Mike Friesenegger, Solution Architect at SUSE, and Rob Culp, SUSE Global Alliance Director, has written this recent blog with further insight: https://www.suse.com/c/combining-confidential-computing-with-hardware-acceleration-to-enhance-end-to-end-value-benefit/

It now covers in further detail how the Crypto Passthrough capability of IBM Secure Execution can be used by SLE BCI based containers within the IBM Hyper Protect Container Runtime image either in IBM Cloud or on premises on a Linux LPAR with SUSE Linux Enterprise Server: https://documentation.suse.com/trd/ibm/html/gs_sles_ibm-hpvs/index.html#id-prepare-ibm-crypto-express-adapters-and-domains-to-be-passed-into-a-containerized-workload

If you prefer a visual walk through: Mike created a nice video as well.