Skip to main Content
Article

Microsoft joins new group to improve cloud security

Matt Barclay
  • Date: 03 October, 2019

Microsoft has teamed up with other big name technology companies including Google, Red Hat, Arm, IBM and Intel to form the Confidential Computing Consortium.

Working under the supervision of the Linux Foundation, the consortium aims to establish standards, frameworks and tools to encrypt data when it’s in use by applications, devices and online services. At the moment, cloud security solutions focus on protecting data that’s either resting or in transit. However, the consortium claims that encrypting data in use is “… possibly the most challenging step to providing a fully encrypted lifecycle for sensitive data”.

As part of the effort, some of the consortium’s participants have already contributed code to support ‘enclaves’ or Trusted Execution Environments (TEEs). A TEE is used to protect the processed data and can be either hardware- or software-based.

Microsoft has agreed to add its Open Enclave SDK for developers to create applications that use TEEs. This open source framework, which supports both Linux and Windows hosts, makes it easy to write and debug code that runs inside TEEs and allows the development of code that’s portable between TEEs, starting with Intel SGX and ARM TrustZone.

Examples of other contributions include Intel’s Software Guard Extensions SDK, which is a hardware-based protection scheme, and Red Hat’s open source Enarx project, which also provides application development support for TEEs.

In addition to the companies already mentioned, the consortium is also bringing together cloud providers, developers, open source experts and academics. And given the Linux Foundation’s leadership, it’s no surprise that one of the key objectives is to build open source tools that provide the right environment for TEE development.

Jim Zemlin, the Linux Foundation's executive director confirmed: “The Confidential Computing Consortium is a leading indicator of what’s to come for security in computing and will help define and build open technologies to support this trust infrastructure for data in use”.

Meanwhile, Microsoft Azure CTO Mark Russinovich explained that: “Protecting data in use means data is not visible in unencrypted form during computation except to the code authorised to access it.

“That can mean that it’s not even accessible to public cloud service providers or edge device vendors. This capability enables new solutions where data is private all the way from the edge to the public cloud”.

Browse Related Brands:
Browse Related Topics:

Matt Barclay

Product Director for Cloud

Matt Barclay is Product Director for Cloud at Global Knowledge UK&I. He has many years of industry experience, with a focus on Cloud and Software Development. He works closely with our key vendors such as AWS and Microsoft to help drive success, address our customers' challenges and ensures our offerings are in line with current trends.

Related Articles
15 Oct 2021 Article

A VMware report has revealed concerns that many security professionals are struggling with increased stress as a result of the impact of the lockdown,...Read More

09 Dec 2020 Article

We review the highlights from the Microsoft Ignite 2020 event, the company’s largest of the year, and take a look at Get On 2021

03 Dec 2020 Article

With 2021 quickly approaching, you need to be ready for existing and new threats. Do these 7 things to safeguard your computer and network.

We Care About Your Privacy

We are using cookies to give you the best experience on our site. Cookies are files stored in your browser and are used by most websites to help personalise your web experience. By continuing to use our website without changing the settings, you are agreeing to our use of cookies.

About your Privacy

We process your data for purposes such as delivering content or advertisements and measuring the delivery of such content or advertisements to extract insights about our website. We may share this information with our partners. Cookies set by Global Knowledge are labelled “first party”; you may exercise your preferences in relation to first party cookies by toggling the switch for each first party cookie category below. The remaining cookies are third party cookies; you may exercise your preferences in relation to each purpose by toggling the relevant switch below or by vendor by clicking “List of IAB Vendors.” These choices will be signaled globally to other websites participating in the Transparency and Consent Framework.
Privacy Statement

Necessary Cookies

These are cookies that are required for the Global Knowledge website to function and cannot be switched off in our systems. They include, for example, cookies that enable you to use a shopping cart or log into the booking area of our website.

Analytics Cookies

Analytics cookies are an optional but important part of our website's functionality. They help us to understand how you interact with our site by collecting and reporting information anonymously. The data collected by analytics cookies is used to improve the website's performance and enhance the user experience. It is important to note that these cookies do not collect any personal information that can be used to identify you.

Preferences Cookies

These are optional and you can turn them off and on. Please only use 2 to 3 lines of text here and if needed link to a page with more cookie info in Intro.

Performance Cookies

These cookies allow us to recognise and count the number of visitors to our website, traffic sources and to see how website visitors move around the website when they are using it. This helps us to improve the way the website works and improve your website experience. All information these cookies collect is aggregated and therefore anonymous.

Cookie Control toggle icon