Question
How to best protect the cryptographic secrets owned by cloud tenantes while still enabling cloud processing infrastructure to compute on the tenant data?
Context
Cloud providers use public and private cryptography to protect their tenant data in transit and at rest. However, to be able to freely compute on the data, the cloud infrastructure needs access to plaintext information.
Solution
Use physical computing device that safeguards and manages digital keys for strong authentication and provides cryptoprocessing.
References
Homomorphic encryption - arxiv.org