Mon. May 20th, 2024

April 10, 2024
MEUDON, France
Thales, the leading global technology and security provider, today announced a collaboration leveraging its CipherTrust Data Security Platform (CDSP) to support End-To-End Data Protection (E2EDP) on Google Cloud, using Confidential Computing (CC) from Google Cloud and trusted cloud independent attestation provided by Intel Trust Authority (ITA).

“As more enterprises migrate their data and workloads to the cloud, there is an increasing demand to safeguard the privacy and integrity of the data, especially those sensitive workloads that include intellectual property, AI models and valuable personal information. This collaboration enables enterprises to protect and control their data at rest, in transit and in use with fully verifiable attestation. Our close collaboration with Google Cloud and Intel increases our customers’ trust in their cloud migration,” said Todd Moore, Vice President of Data Security Products at Thales.

A majority of the 2023 Thales Cloud Security Study respondents reported having a significant amount of sensitive data stored and in use in the cloud. Consequently, safeguarding sensitive data and associated workloads when stored or in use, is an increasing priority, especially for highly regulated industries such as financial services and healthcare. Thales’s collaboration with Intel and Google Cloud provides certifiable controls for enterprises to fully protect their data end-to-end.

Purnam Sheth, Vice President and General Manager: Trust and Security Products, SATG at Intel: “Creating this groundbreaking, seamless data security platform in Google Cloud meets customers’ complex requirements for data protection, controlled access and security, and adherence to compliance for data at rest, in transit and in use. Foundational Intel® Trust Domain Extensions Confidential Compute and Intel® Trust Authority gives enterprises assurance of the integrity of their workloads and guards at all stages of data management. This valuable collaboration between Thales, Google Cloud and Intel makes this possible.”

This security platform is based on the principle of separation of duties, where the customer remains in control of the encryption keys and their location. This approach enhances trust by holding each stakeholder responsible for their respective roles and reduces the ability for a malicious actor to access code and data at rest, in transit and while being executed.

Customers can migrate existing workloads with sensitive data or create new workloads needing zero trust, confidential computing and Confidential AI to this security platform in Google Cloud to broaden data security, attestation and set the right authorizations. With end-to-end data protection, multiple parties can securely collaborate on various use cases, such as Confidential AI datasets and models as needed while preserving privacy, confidentiality, and compliance with privacy regulations.

The Thales CipherTrust Data Security Platform uses Intel Trust Authority as a zero-trust, independent attestation service for advanced security and scalable confidential computing. Consistent attestation to Trusted Execution Environments (TEE) that are based on Intel Trust Domain Extensions. This single, consistent attestation process provides assurance to any relying party that the TEE and any data and workloads running within it have not been compromised.

Brian Roddy, VP, Product Management, Google Cloud: “Google Cloud is committed to providing our customers secure, private and reliable environments for their workloads, and our Confidential Computing portfolio plays a critical role in this effort. Offering our customers solutions like Thales’ encryption key management expertise, combined with Intel’s Trust Authority attestation, enables the choice of even stronger privacy controls.”

By Prabhat

Leave a Reply

Your email address will not be published. Required fields are marked *