Demo Series: Protect Code On An Application Server

Demo Series: Protect Code On An Application Server
Published on
Oct 17, 2023
In this video, we will demonstrate how Anjuna Confidential Computing Platform can protect valuable intellectual property, such as AI or ML models running on an application server.
https://www.anjuna.io/blog/demo-series-protect-code-on-an-application-server

Protecting Three-Tier Application Architectures With Anjuna's Confidential Computing Platform

In this video, we will demonstrate how Anjuna Confidential Computing Platform can protect valuable intellectual property, such as AI or ML models running on an application server.

In a typical multi-tier app architecture, the application server is a critical component where an attacker who gains root access can extract data and code from memory or storage. Let's see this in action.

Back End Virtual Private Cloud

We first play the role of an attacker who gains root access to the application server. From there, we quickly locate the Python code, which contains a valuable machine-learning model.

Now, we can potentially steal the code for my own purposes. Additionally, we can modify the code to perform nefarious actions, such as introducing vulnerabilities or creating backdoors.

Secure Enclave Protection Platform

To protect against such attacks, Anjuna Confidential Computing Platform creates a secure enclave for the application server to operate within. We will assume the role of the administrator and invoke the Anjuna Confidential Runtime with one simple command.

The platform leverages new hardware capabilities in the cloud to protect data in use without requiring any changes to the application code. Anjuna also encrypts the server code with a key that’s securely stored in the Anjuna Policy Manager or an equivalent secret store. The key is only distributed to a trusted application server running within the secure enclave and is never exposed to the host or any potential attackers.

Anjuna’s Plan in Action

Let's see Anjuna's protection in action. We will play the role of an attacker who again gains root access to the application server and tries to extract the server code.

Anjuna Confidential Computing Platform Protection

However, with Anjuna's protection, the code appears as encrypted data that the attacker cannot view or modify. Anjuna Confidential Computing Platform offers a simple and effective solution to safeguard your valuable IP and server code. It creates a secure enclave for your application server and encrypts your code with a securely managed key that's never exposed to attackers. With Anjuna, you can confidently protect your critical business assets.

Learn more about the capabilities of the Anjuna Confidential Computing Platform by scheduling your own live demo.

More like this
Governance, zero trust, and data-in-use: What you need to know about NIST CSF 2.0
Governance, zero trust, and data-in-use: What you need to know about NIST CSF 2.0
Prevent Accidental Secret Breaches with Anjuna and GitLab
Is your security more like a seatbelt, or an elevator brake?
Get Started Free with Anjuna Seaglass

Try free for 30 days on AWS, Azure or Google Cloud, and experience the power of intrinsic cloud security.

Start Free
Anjuna Platform and Features
Confidential Computing Essentials
Secrets Protection