Advancing confidential computing and the IBM Hyper Protect product family as a fully integrated part of the Red Hat ecosystem
Confidential computing for Red Hat ecosystems
Meet IBM® Hyper Protect Container Runtime (HPCR) for Red Hat® Virtualization Solutions and Hyper Protect Confidential Containers (HPCC) for Red Hat® OpenShift®. These two powerful products secure sensitive data from development to deployment and throughout its usage in an application. Together, they form a hardware-based confidential computing foundation to protect your workloads across hybrid environments.
Features
Powered by IBM Secure Execution for Linux® (SEL), Hyper Protect delivers container-level isolation on Linux on Z and LinuxONE. This secures workloads from the infrastructure up during development and deployment stages.
Leverage encrypted contracts to manage workload identities and enforce zero-trust policies. This feature ensures predefined roles and least-privilege access are upheld, no matter who operates the workload environment.
With built-in cryptographic support through FIPS 140-2 Level 4 certified HSMs, both Hyper Protect solutions ensure that sensitive data is always encrypted—even in shared or public cloud environments.
Hyper Protect offers secure workload verification at deployment time. Only signed, preapproved containers are allowed to run, with tamper-proof attestations and zero reliance on external trust systems.
Powered by IBM Secure Execution for Linux® (SEL), Hyper Protect delivers container-level isolation on Linux on Z and LinuxONE. This secures workloads from the infrastructure up during development and deployment stages.
Leverage encrypted contracts to manage workload identities and enforce zero-trust policies. This feature ensures predefined roles and least-privilege access are upheld, no matter who operates the workload environment.
With built-in cryptographic support through FIPS 140-2 Level 4 certified HSMs, both Hyper Protect solutions ensure that sensitive data is always encrypted—even in shared or public cloud environments.
Hyper Protect offers secure workload verification at deployment time. Only signed, preapproved containers are allowed to run, with tamper-proof attestations and zero reliance on external trust systems.
Choose your product
Protect digital assets and signing secrets that use HPCR with Crypto Express. Trusted by blockchain providers like Metaco and Ripple, this combination ensures secure, offline signing and policy protection.
Eliminate risks tied to leaked credentials by securing application identities. Identity-based access control ensures that the secrets remain confidential, reducing human error and insider threat vectors.
Enable sovereign data protection in compliance with national and industry mandates. Service providers like Phoenix Systems use Hyper Protect to ensure that sensitive environments remain confidential.
Use HPCC to leverage a confidential computing environment to secure and manage highly sensitive manufacturing data and design artifacts.
Ensure that AI models remain confidential during training and inference. Partners, like Jamworks, use Hyper Protect to integrate AI while protecting proprietary content.
Anchor trust across hybrid environments by protecting cryptographic keys and enforcing attestation policies—even when workloads span x86 and LinuxONE platforms.
Resources
Explore IBM Hyper Protect Platform (2nd Gen), which enables secure, encrypted workloads with confidential computing.
Read how to apply data protection and confidentiality in a hybrid cloud environment.
Explore how Confidential Containers and IBM Secure Execution enhance Linux workload security.
Learn how Red Hat OpenShift and IBM Secure Execution bring confidential computing to containerized workloads.