Security News > 2022 > October > Hardening data security in the cloud

"As a result the data is not readable by human admins as well as the cloud providers' hypervisors, other tenants or the operating system. So you no longer have to trust the cloud provider's security even if they were corrupted and intentionally malicious."

Intel SGX offers an additional layer of beyond data and application isolation inside the TEE. The remote attestation function verifies that a cloud user's SGX-enabled application can be trusted.

Any guarantee of trust and data integrity is an attractive option for public and private sector organisations which routinely share and process sensitive, personally identifiable information tightly regulated by national and regional data protection regulations - including those in financial services, healthcare and retail.

A global reinsurance provider uses data analytics to pull more meaningful insight from the large volumes of data it collects to build more accurate risk profiles for its global customer base.

Another deployment comes from the German government which recently moved to build Confidential Computing-enabled services for centralized healthcare, a project that also impacts data sovereignty and shows how Intel SGX can protect citizens' private data when its stored in the cloud.

"Confidential Computing enables three things. The first is obviously data privacy. Because the data is encrypted it is secure by design and meets the principles of the GDPR," says O'Neill, which gives enterprises using Intel SGX a significant advantage as they seek to demonstrate compliance.

News URL

https://go.theregister.com/feed/www.theregister.com/2022/10/07/hardening_data_security_in_the/