Cloud Key Management

Expand all | Collapse all

Relationship between Confidential Computing and Customer-Managed Key.

  • 1.  Relationship between Confidential Computing and Customer-Managed Key.

    CSA Instructor
    Posted Jan 31, 2023 06:28:00 PM
    I understand that Confidential Computing is important technology for protecting data in use. On the other hand, Customer-Managed-Key is also important to protect data for at rest and in use in cloud.
    The following is my point of questions:
    Even though Confidential Computing is used, customers still need to use Customer-Managed-Key because customers need to encrypt data for protecting data at rest, right?
    If so, provider needs to decrypt data using a key managed by customer before processing it, right?

    Please give me any suggestion for this.

    ------------------------------
    Masahiro Morozumi
    Director
    CSA Japan Chapter
    ------------------------------


  • 2.  RE: Relationship between Confidential Computing and Customer-Managed Key.

    Posted Feb 01, 2023 10:40:00 AM
    My understating is that protection "in use" will be achieved using ephemeral key derived from the customer's Master.

    Does that make sense, Mr. Masahiro?