The first product in the Google Cloud Confidential Computing portfolio, Confidential VMs, enables customers to encrypt data in-use while it is being processed and not just when at rest and in-transit. Based on the N2D family of VMs for Google Compute Engine, Confidential VMs provide customers high performance processing for the most demanding computational tasks and enable encryption for even the most sensitive data in the cloud while it is being processed.
“At Google Cloud, we believe the future of cloud computing will increasingly shift to private, encrypted services where users can be confident that the confidentiality of their data is always under their control. To help customers in making that transition, we’ve created Confidential VMs, the first product in our Google Cloud Confidential Computing portfolio,” said Vint Cerf, vice president and chief internet evangelist, Google.
“By using advanced security technology in the AMD EPYC processors, we’ve created a breakthrough technology that allows customers to encrypt their data in the cloud while it’s being processed and unlock computing scenarios that had previously not been possible.”
The Confidential VMs from Google provide:
- Real time encryption-in-use – Google Cloud customers can encrypt data-in-use, taking advantage of advanced security features offered by the 2nd Gen AMD EPYC processor together with Confidential Computing cloud services, bringing a breakthrough in the level of cloud data protection,
- Secure Encrypted Virtualization (SEV) – an advanced security feature available on AMD EPYC processors, which encrypts VM memory using a dedicated per-VM key that is generated and managed by the embedded security processor,
- “Lift and Shift Confidentiality” – AMD and Google have simplified the use of Confidential Computing, making the transition to Confidential VMs seamless as customers do not need to make any code changes to their applications to benefit from these VMs,
- High-performance VMs – Confidential VMs offer similar performance to Google N2D VMs, which are powered by high-performance 2nd Gen AMD EPYC processors.