The collaboration is based on the Thales CipherTrust Data Security Platform and the Intel Trust Authority to provide end-to-end data security through Confidential Computing.
Thales, the world’s leading technology and security provider, announces a collaboration that leverages the Thales CipherTrust Data Security Platform to deliver end-to-end data security through Confidential Computing and Trusted Attestation with support from the Intel® Trust Authority. This collaboration enables customers in highly regulated industries to secure workloads and protect data used on-premises and in the cloud.
Based on Thales’ 2023 Cloud Security Survey, more than half of respondents report having a large amount of sensitive data in the cloud. As a result, protecting sensitive data and associated workloads in the cloud is becoming increasingly important, especially in terms of regulatory compliance and data protection. The Thales and Intel collaboration combines the industry-leading CipherTrust data security platform with the Intel Trust Authority verifiable certification service. This protects usage data and workloads and ensures seamless end-to-end data security.
Confidential computing protects usage data using computation in a cryptographically isolated, hardware-based Trusted Execution Environment (TEE). Often, the cryptographic material used to verify the TEE is managed by the cloud provider. Thales’ comprehensive data security solution effectively circumvents this security problem. It implements separation of duties and gives the customer control over the cryptographic key material. This approach removes the requirement to fully trust the cloud provider.
By using Intel’s Trusted Attestation, Thales’ CipherTrust Data Security Platform can ensure that sensitive workloads are never decrypted outside of an Intel® TEE, Intel® Trust Domain Extension (TDX) or Intel® Software Guard Extension (SGX).
Todd Moore, VP of Encryption Products at Thales, says: “The Thales and Intel collaboration gives security-conscious organisations the ability to securely share data while maintaining data privacy, confidentiality and regulatory compliance such as GDPR, PCI-DSS and HIPAA. This is because only the results of the processes performed are disclosed. This is especially important for strictly regulated industries. Here, data security is especially important to ensure information security.”
Anil Rao, VP Systems Architecture, Engineering and Office of the CTO at Intel said, “It is important that organisations can control their data protection while maintaining business agility to meet regulatory requirements. The Thales CipherTrust Data Security Platform, Intel Confidential Computing Technologies and Intel Trust Authority together provide customers with the tools they need to do this. We are pleased to combine the technological advances and innovations of Thales and Intel with this solution.”