Safeguarding Sensitive Data Access At Scale with Privacy-Enhancing Technologies

How can you verifiably prove your microservices are protecting sensitive data, even from privileged administrators?

#1about 1 minute

The challenge of data security in microservice architectures

Microservice architectures offer scalability but create data protection challenges as sensitive data flows freely between many services.

#2about 5 minutes

Understanding confidential computing and trusted execution environments

Confidential computing uses hardware-based trusted execution environments (TEEs) to isolate data and code during processing, providing verifiable proof through remote attestation.

#3about 4 minutes

Key challenges of applying PETs at scale

Implementing privacy-enhancing technologies at scale is difficult due to microservice flexibility, the need for fine-grained purpose limitation, and providing verifiable transparency.

#4about 5 minutes

A solution combining serverless and confidential computing

A proposed architecture uses serverless computing to isolate sensitive data logic within a trusted execution environment, combined with pseudonymization for end-to-end protection.

#5about 4 minutes

Enabling third-party verification with remote attestation

Remote attestation allows third parties to verify workloads, enabling trusted management of key services like KMS and attestation services for hardware-backed access control.

#6about 2 minutes

Summary of the data protection architecture

The solution combines serverless computing, end-to-end data protection, and third-party verification to secure sensitive data in microservices while preserving flexibility.