Microsoft Azure Endowed With Powerful Encryption

17 September, 2017, 17:15 | Author: Oscar Goodwin
  • Microsoft introduces Azure confidential computing, a cutting-edge security platform to protect data in the cloud

Another significant cybersecurity development this week: Microsoft announced yesterday the availability on its Azure cloud platform of "confidential computing", the encryption of data while in use, "a protection that to date has been missing from public clouds", according to Microsoft CTO Mark Russinovich.

With this new security layer, data processed in the cloud is directly controlled by the customer and the customer only. Azure confidential computing adds an extra layer of cloud security for enterprise customers that not only protects the data from hackers, but can also secure the data from government data collection efforts.

The confidential computing service is meant to reassure customers that are considering moving data and applications to Microsoft's cloud that the switch will not open them up to hacks, spying and secret subpoenas.

Some companies have historically been wary of moving sensitive data to the cloud because of worries about their data being attacked when it is in use.

He said confidential computing protects against a variety of threats, including: malicious insiders with administrative privilege or direct access to hardware on which it is being processed, hackers and malware that exploit bugs in the operating system, application, or hypervisor, and third parties accessing it without consent.

Confidential computing ensures that when data is "in the clear", which is required for efficient processing, the data is protected inside a Trusted Execution Environment (TEE - also known as an enclave), an example of which is shown in the figure below.

Microsoft says this feature will make sure data stays away from prying eyes, including hackers, government warrants or even Microsoft itself. Data can be accessed only after authorization of customers. If the code is altered or tampered, the operations are denied and the environment disabled.

TEEs and enclaves are not new to Microsoft. The other TEE option is the hardware-based Intel Software Guard Extensions (SGX) solution, which leverages the CPU.

The Trusted Execution Environments will operate within Hyper-V instances separated from server access, or on an Intel SGX environment that shields the data from outside access at the hardware level. Using it, developers don't have to directly access the credentials stored in the Azure Key Vault or put credentials in code, Microsoft's announcement explained. We're working with Intel and other hardware and software partners to develop additional TEEs and will support them as they become available.

Intel and Microsoft will also probably take the new technology to the server computers that companies use in their own data centers, referred to as on-premise computing, Intel's Echevarria said. "With confidential computing, they can move the data to Azure knowing that it is safe not only at rest, but also in use".

This is however not the first time Microsoft has used TEEs/enclaves.

Recommended:

  • Porsche Injures 11 After Cars and Coffee Crash

    Porsche Injures 11 After Cars and Coffee Crash

    Hundreds showed up to view the unique cars on show and engage the drivers. "And after that it was sheer screaming". Eyewitness video of the incident showed the Porsche spinning sideways before striking pedestrians.
    2 terrorists killed during infiltration bid in J&K's Machhil sector

    2 terrorists killed during infiltration bid in J&K's Machhil sector

    This bid was foiled after more than a month's time when last infiltration was repulsed with fatal casualties on militant side. Meanwhile, violation of the ceasefire agreement by Pakistani troops continued for the second night in Jammu .
    Interpreter accused of signing gibberish during Hurricane Irma briefing

    Interpreter accused of signing gibberish during Hurricane Irma briefing

    County leaders have faced the brunt of the criticism for failing to organise an interpreter despite days of weather warnings. The county often uses the company VisCom to provide interpreters, but owner Charlene McCarthy claimed she was never called.
  • Malware Alerts Prompt Google to Purge Android Apps From Play Store

    Malware Alerts Prompt Google to Purge Android Apps From Play Store

    Later in May Check Point researchers found other apps that tricked users to keep clicking on add-ons. It derives its name from one of the apps it uses to infect devices called Lovely Wallpaper.
    Qatar's emir says ready to talk to end crisis

    Qatar's emir says ready to talk to end crisis

    Sheikh Tamim was expected to fly out to Paris for talks with French President Emmanuel Macron later on Friday. The Gulf dispute undermines the political resolution of crises and the collective fight against terrorism.
    Gaza : Hamas says it is ready for reconciliation with Fatah

    Gaza : Hamas says it is ready for reconciliation with Fatah

    Israel and Egypt have since imposed a blockade on Gaza; Egypt intermittently opens its border crossing into Gaza. This means that electricity has often been provided for less than four hours a day, and never more than six.
  • No third party in NE: China on Japan FDI plan

    No third party in NE: China on Japan FDI plan

    Hua said the boundary between India and China was yet to be delimited: "There are disputes over the eastern section of the China-India boundary".
    Apple Watch Series 3 Preview: Now Compatible With Cellular

    Apple Watch Series 3 Preview: Now Compatible With Cellular

    The phones have a new A11 processor along with an M11 co-processor, iPhone 8 has 2GB of RAM while the 8 Plus have 3GB of RAM. Nevertheless, you'll still link your Apple Watch to your iPhone, therefore sending it notifications from your phone.
    London Underground blast: 18-year-old terror suspect arrested in Dover

    London Underground blast: 18-year-old terror suspect arrested in Dover

    Police said cordons were put in place around the neighborhood to clear the area for police. The Islamic State terror group said an IS "detachment" had been behind the bombing .
  • Paris to host 2024 Olympics, Los Angeles to follow in 2028

    Paris to host 2024 Olympics, Los Angeles to follow in 2028

    Both cities are very enthusiastic about the Games and are promoting the Olympic spirit in a fantastic way'. They followed that up with the Games of the 23rd Olympiad, in 1984.
    San Jose to sue Trump administration over DACA decision

    San Jose to sue Trump administration over DACA decision

    Ending DACA will set in motion rolling mass deportations over the course of more than two years. "Don't believe the spin. And so they've essentially been living as Americans in every way except having citizenship.

    Dow, S&P close out impressive week at new all-time highs

    USA stocks advanced Friday, with the Dow extending its record-breaking streak to four days, as tech shares led the market higher. Britain's FTSE 100 fell 0.9 percent while the French CAC 40 rose 0.1 percent and Germany's DAX fell 0.2 percent.


Popular

Military options against N.Korea effective, overwhelming
The increasing levels of sanctions will cut off 90 percent of North Korea's trade. "Forget it. Trump has also threatened "fire and fury" in response to North Korea's threats.

Wanyama set to miss Swansea game due to an injury
Tottenham pay the penalty: The need for Video Assistant Referee (VAR) in the Premier League has never been greater. Do you think Llorente made the right decision? "We certainly had to graft for a point", Clement told BT Sport.

Hurricane Irma: prayers for Barbuda at Southwark Cathedral service
A local broadcaster in Barbuda summarized the situation thus : The island's history will now be described in two epochs. Maarten for example, Irma destroyed several hotels with footage showing some of them flattened by the powerful winds.

British Airways plane held in Paris over 'direct security threat'
Pictures and video from the scene show police and fire engines surrounding the plane as it sits on the runway at the airport. This is a breaking news story and will be updated regularly as new information and developments become available .

DoD Detains US Citizen who Surrendered in Syria
Syrian troops with Iran-backed militias have closed in from the west since last week, while the SDF advances from the east. Funk II, commander of the coalition forces, said Saturday in the press release.