Simplifying confidential computing: Azure IoT Edge security with enclaves – Public preview

%3CLINGO-SUB%20id%3D%22lingo-sub-290053%22%20slang%3D%22en-US%22%3ESimplifying%20confidential%20computing%3A%20Azure%20IoT%20Edge%20security%20with%20enclaves%20%E2%80%93%20Public%20preview%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-290053%22%20slang%3D%22en-US%22%3E%3CP%3EWe%20are%20excited%20to%20announce%20the%20cross-platform%20availability%20of%20the%20Open%20Enclave%20SDK%20for%20devices%20at%20the%20intelligent%20edge%2C%20as%20well%20as%20the%20preview%20of%20integration%20of%20Open%20Enclave%20and%20the%20Azure%20IoT%20Edge%20security%20manager.%20Together%20with%20our%20partners%2C%20we%20help%20organizations%20solve%20a%20very%20challenging%20security%20problem%20in%20the%20Internet%20of%20Things%20(IoT)%20%E2%80%93%20protecting%20code%20and%20data%20while%20in%20use%20at%20the%20edge.%20This%20includes%20securing%20compute%20workloads%20within%20the%20confines%20of%20Trusted%20Execution%20Environments%20(TEE)%20or%20simply%20enclaves%2C%20a%20concept%20called%20Confidential%20Computing.%26nbsp%3B%20We%20offer%20a%20platform%20for%20developing%20applications%20that%20execute%20in%20enclaves%2C%20also%20known%20as%20trusted%20applications%20(TA)%2C%20in%20a%20way%20that%20simplifies%20TA%20development%20for%20all%20audiences%20from%20hardcore%20hardware%20security%20experts%20to%20edge%20and%20cloud%20software%20applications%20developers.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EWith%20this%20announcement%2C%20Azure%20IoT%20Edge%20application%20developers%20can%20write%20TAs%20that%20root%20trust%20in%20any%20secure%20silicon%20TEE%20built%20on%20such%20enclaving%20technologies%20like%20ARM%20TrustZone%C2%AE%2C%20Intel%20SGX%2C%20and%20embedded%20Secure%20Elements%20using%20Windows%20or%20Linux%20operating%20systems.%20This%20broad%20applicability%20across%20different%20enclave%20technologies%20and%20integration%20with%20IoT%20Edge%20greatly%20simplifies%20the%20work%20developers%20must%20do%20to%20protect%20data%20and%20devices%20at%20the%20edge.%20With%20accessibility%20by%20all%20security%20expertise%20as%20topmost%20goal%2C%20this%20integration%20is%20laden%20with%20features%20to%20truly%20simplify%20and%20shorten%20the%20journey%20from%20idea%20to%20at-scale%20production%20deployment%20of%20secure%20intelligent%20edge%20applications.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20style%3D%22width%3A%20684px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Fgxcuf89792.i.lithium.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F60499i7E7CD88F36731CDA%2Fimage-size%2Flarge%3Fv%3D1.0%26amp%3Bpx%3D999%22%20alt%3D%22b216e403-d0fd-4677-868e-28d3631d01f0.png%22%20title%3D%22b216e403-d0fd-4677-868e-28d3631d01f0.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3ERead%20about%20it%20in%20the%20%3CA%20href%3D%22https%3A%2F%2Fazure.microsoft.com%2Fen-us%2Fblog%2Fsimplifying-confidential-computing-azure-iot-edge-security-with-enclaves-public-preview%2F%22%20target%3D%22_self%22%20rel%3D%22noopener%20noreferrer%22%3EAzure%20blog%3C%2FA%3E.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-290053%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EAzure%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
Community Manager

We are excited to announce the cross-platform availability of the Open Enclave SDK for devices at the intelligent edge, as well as the preview of integration of Open Enclave and the Azure IoT Edge security manager. Together with our partners, we help organizations solve a very challenging security problem in the Internet of Things (IoT) – protecting code and data while in use at the edge. This includes securing compute workloads within the confines of Trusted Execution Environments (TEE) or simply enclaves, a concept called Confidential Computing.  We offer a platform for developing applications that execute in enclaves, also known as trusted applications (TA), in a way that simplifies TA development for all audiences from hardcore hardware security experts to edge and cloud software applications developers.

 

With this announcement, Azure IoT Edge application developers can write TAs that root trust in any secure silicon TEE built on such enclaving technologies like ARM TrustZone®, Intel SGX, and embedded Secure Elements using Windows or Linux operating systems. This broad applicability across different enclave technologies and integration with IoT Edge greatly simplifies the work developers must do to protect data and devices at the edge. With accessibility by all security expertise as topmost goal, this integration is laden with features to truly simplify and shorten the journey from idea to at-scale production deployment of secure intelligent edge applications.

 

b216e403-d0fd-4677-868e-28d3631d01f0.png

 

Read about it in the Azure blog.

0 Replies