At Fortanix we are building a new class of solutions called Runtime Encryption, leveraging Intel® SGX, to protect applications and data in use. We often receive inquiries about the impact of side channel attacks on Intel® SGX and Fortanix solutions.
When it comes to the adoption of hybrid or multi-cloud IT, we find in our customer conversations that it's not a question of whether to adopt but rather at what stage of maturity to adopt. To ensure that transition is secure, most customers are rethinking data protection, encryption, and key management controls.
One of the challenges to implementing data at rest encryption is the need for robust key management. Solutions dealing with sensitive or high-value data require the use of a hardware security module (HSM).
When retrofitting security onto legacy applications, dealing with the binary blobs you get from standard encryption techniques can be inconvenient.
At Fortanix, we are big proponents of deterministic security. Designing in security from the get-go by using secure programming principles is a big part of that.
Several customers have reached out to Fortanix for feedback on the newly found CPU vulnerabilities.