Aggregator

Confidential computing

The server is equipped with special hardware that enables us to implement the security concept of Confidential Computing. Specifically, we use an AMD CPU with the additional SEV-SNP (Secure Encrypted Virtualization – Secure Nesting Paging) feature, which allows data to be processed in an isolated and therefore particularly secure environment.

Unlike traditional server infrastructure providers, where manipulative access to data may be possible under certain circumstances, the use of confidential computing technology ensures a high level of security in terms of the confidentiality and integrity of the data processed therein. This significantly reduces the attack surface and eliminates the need to trust the server hardware provider, as independent verification is possible. Verification is enabled by means of certification from the system environment and is cryptographically secured.

Another key advantage is that all data stored or processed in RAM is automatically deleted when the respective instance is shut down. In cases where data does need to be stored persistently, we have set up hard disk encryption.