Say 'Yes!' to the public Cloud
The move to cloud computing has been slowed by the legitimate security concerns. Before trusting sensitive data, applications, and algorithms to a cloud platform provider, enterprises want assurance that their data and intellectual property will remain secure.They can’t get those assurances today.
The more third parties that can access your IT data and networks, the higher the risk of a breach. The nature of cloud deployments exposes enterprises to potential hacking and unauthorized data access by individuals beyond the control of your own company. Employees and contractors of the IT cloud platform provider, as well as third parties who work with that provider, have access to your data.
A data breach at Capital One in early 2019 exposed the personal data of over 200 million bank customers and applicants. The perpetrator was a former employee of a cloud platform provider, who boasted online about what she’d done months earlier.
Yes: Prevention, Not Detection
Now there’s a way to say yes to the move to cloud computing. Preventing threats changes the focus from chasing malicious acts that have already occurred to maintaining secure resources and networks. Protecting data and applications is not sufficient. Memory and networks need to be protected as well.
Confidential clouds create an environment where the cloud provider, third parties, system administrations, and other can do their job--without keeping data and applications secure by default. This reduces the attack surfaces and creates an environment that is more secure than on-premises systems.
Confidential clouds start with secure enclaves technologies delivered by cloud providers like AWS and Azure. Secure enclaves leverage CPU-level security features such as hardware-level encryption, physical memory isolation and more. Applications and data residing in these encrypted enclaves are rendered useless, even in cases when the host is completely compromised, and the data is in exposed. Enclaves can provide similar hardware protection for storage and network data—including that stored in clouds—for full stack security coverage of data, networks, and application.
Anjuna Confidential Cloud software makes these environments both secure and simple to implement, so that applications can be securely deployed anywhere enclave-based hardware is supported. Yes, this includes ALL clouds— public, private and hybrid—as well as containers, virtual machines, and bare-metal servers. Anjuna allows enterprises to complete workloads anywhere—on premises or in the cloud—and still maintain complete data control.
With Anjuna, moving to secure enclaves is fast and simple. No recoding or recompilation of applications is required, and there’s no need to use an SDK. Within just a few minutes, a secure enclave is established—without changes to applications or operations. An Anjuna Confidential cloud protects invisibly as part of infrastructure—no changes to applications or operations required..
Yes: Multi-Platform and Multi-Cloud Support
Anjuna supports Intel, AMD and AWS Nitro Enclave platforms.
Workloads can be executed across any enclave platform without modification. Anjuna Confidential Cloud software also run son AWS Nitro Enclaves, Microsoft’s Azure confidential computing, and integrates with Kubernetes, key management systems and more! This provides the flexibility to secure data and applications—no matter on what server or cloud they're running.