What is IBM Cloud Data Shield?

IBM Cloud™ Data Shield enables users to run containerized applications in a secure enclave on an IBM Cloud Kubernetes host, providing data-in-use protection. Data Shield allows user-level code to allocate private regions of memory, called enclaves, that are protected from processes running at higher privilege levels. It extends SGX language support from C and C++ to Python and also provides pre-converted SGX applications for MySQL, NGINX and Vault, with little to no code change. Powered by the Fortanix Runtime Encryption platform and Intel® SGX technology, these tools enable organizations with sensitive data to leverage cloud computing with more confidence.

Data Shield benefits

Facilitates a cloud model

Enables organizations with sensitive data to leverage cloud computing.

Secures containerized apps

Runs containerized applications in secure enclaves on the IBM Cloud Kubernetes Service.

Increases visibility

Provides visibility into node security attributes.

Supports DevOps

Integrates with DevOps pipelines.

Delivers scalability and high availability

Uses the IBM Cloud Kubernetes Service to bring scalability and high availability to SGX workloads.

Find IBM Cloud Data Shield in the IBM Cloud catalog and sign up.