Background
A leading global payment platform born in the heart of Silicon Valley, this company has grown its business model from simple financial services to various business, consumer, and peer-to-peer offerings. Recently, the platform added crypto finance features to purchase, sell, and hold popular cryptocurrencies and digital assets. Blockchain elements were built into the platform using a propriety digital asset security microservice
Challenges
The payment platform needed to secure its proprietary multi-party computing (MPC) key management microservice to eliminate unauthorized access to its customers' digital wallets in the cloud. The microservice itself is not secure by default because it stores the cryptographic keys in memory as plaintext. Knowing the keys are vulnerable and susceptible to attack, the platform attempted to leverage the cloud provider’s secure enclave technology to secure their microservice but soon discovered it was too complex to do-it-yourself (DIY) and the effort required re-architecting the SaaS application.
Environment
The company uses AWS for its platform. In conjunction with its commitment to open-source, multi-cloud, and hybrid support, the company sought the flexibility and scalability of AWS Nitro Enclave technology to support its cryptocurrencies and digital assets services. The company also sought to expand to a multi-cloud environment to deliver high availability of its services to customers with the highest level of security.
Solution
After realizing it was too difficult to deploy Confidential Computing on their own, the company turned to Anjuna Security. Anjuna’s Confidential Cloud software quickly enables the secure enclave technology available on AWS with no recoding required. With the click of a button, Anjuna ensures that insiders, third-party cloud admins, and bad actors have no access to the private data of cryptocurrency transactions and digital assets.
“We tried to protect our microservice using secure enclaves but discovered how hard it is. Anjuna enabled the protection of our digital asset security microservice quickly and easily—without requiring any changes to our application. Customers trust knowing their digital wallets are kept isolated and secure on AWS.”
- CISO, Cryptocurrency Platform
Results
Anjuna Confidential Cloud software hardened the proprietary MPC key management microservice ensuring digital currency transactions on AWS are always encrypted in memory. Now, platform customers trust their digital wallets are fully secure and can leverage the platform with total confidence. Anjuna facilitated simple and rapid use of AWS Nitro Enclave technology to deliver advanced data protection across the entire cloud environment.
