Overview

What is IBM Cloud® Data Shield?

IBM Cloud Data Shield enables users to run containerized applications in a secure enclave on an IBM Cloud Kubernetes Service host, providing data-in-use protection. IBM Cloud Data Shield supports user-level code to allocate private regions of memory, called enclaves, that are protected from processes running at higher privilege levels.
IBM Cloud Data Shield – Secure Data Runtime/In Use

IBM Cloud Data Shield – Secure Data Runtime/In Use (02:58)

How to use IBM Cloud Data Shield

Deploy a pre-enabled app

Deploy a pre-enabled app

Choose from a set of public IBM Cloud Data Shield images to create containers in IBM Cloud Kubernetes Service.

Learn more

Implement on custom apps

Implement on custom apps

Access the Helm chart to install IBM Cloud Data Shield on your Intel SGX-enabled IBM Cloud Kubernetes Service cluster.

Learn more

Benefits

Facilitates a cloud model

IBM Cloud Data Shield helps organizations with sensitive data deploy and benefit from cloud computing.

Secures containerized apps

IBM Cloud Data Shield can run containerized apps in secure enclaves on IBM Cloud Kubernetes Service.

Increases visibility

IBM Cloud Data Shield offers better visibility into node security attributes.

Supports DevOps

IBM Cloud Data Shield easily integrates with DevOps pipelines.

Delivers scalability and high availability

IBM Cloud Data Shield uses IBM Cloud Kubernetes Service to bring scalability and high availability to SGX workloads.

Related products

Additional Intel SGX offerings on IBM Cloud

Intel SGX bare metal servers on IBM Cloud

Learn about data-in-use protection on IBM Cloud by way of Intel SGX.

Read the blog post

Intel SGX in IBM Cloud Kubernetes

Learn about IBM SGX bare metal worker nodes for IBM Cloud Kubernetes Service.

Read the blog post

Protect your containers today.

Get started