Defining Confidential Computing
Confidential Computing (CC) refers to a set of technologies and practices that aim to protect data while it is being processed in computer systems. It involves encrypting data while it is in use, as well as isolating it from other processes and applications on the same system.
There are many powerful and interesting ideas engendered by this model of computing. For example, the model allows applications to process sensitive data in a protected environment without exposing it to other processes and applications on the same system.
An important notion in CC is the hardware root of trust, achieved by embedding a set of private keys into the hardware. These keys can be used to establish and verify the authenticity and the integrity of the hardware. Isolated and protected environments created using Confidential Computing can be used to generate keys that encrypt data which can only be decrypted inside an isolated and protected environment. In this sense, the custody of the data is effectively given to the system.
This can have far reaching consequences for compliance and audit. A key feature of computing environments created using CC is that immutable and verifiable audit logs can be generated of the actors and activities inside such environments. Establishing a chain of data custody from enterprises to hardware created environments raises several new issues and concerns including notions of program identity and authorizing access privileges to computer programs.
Suggested for you

April 30, 2023
AI, Data, and Privacy Preservation: Trends and News from RSA 2023 Related to Confidential Computing
The annual RSA Conference(RSAC) #RSAC2023 was held last week in San Francisco, featuring many cybersecurity professionals aiming to attract customers, prospects, and partners.

March 14, 2023
Key Benefits of Data Sharing in Industry 4.0
Industry 4.0 encourages collaboration between different companies as they are able to analyze each other’s data more easily and share their findings.

March 9, 2023
SaaS Data Security: How to Ensure Your Data is Safe
SafeLiShare solves data privacy in SaaS with a cryptographic infrastructure service with easy API and CLI toolkit. It provides tamper-proof guarantee the security of customer data...

March 8, 2023
Cloud Data Life Cycle Explained
During the data life cycle, sensitive information may be exposed to vulnerabilities in transfer, storage, and processing activities.