Mingshen Sun

Safeguarding Sensitive Data Access At Scale with Privacy-Enhancing Technologies

How can you verifiably prove your microservices are protecting sensitive data, even from privileged administrators?

Safeguarding Sensitive Data Access At Scale with Privacy-Enhancing Technologies
#1about 1 minute

The challenge of data security in microservice architectures

Microservice architectures offer scalability but create data protection challenges as sensitive data flows freely between many services.

#2about 5 minutes

Understanding confidential computing and trusted execution environments

Confidential computing uses hardware-based trusted execution environments (TEEs) to isolate data and code during processing, providing verifiable proof through remote attestation.

#3about 4 minutes

Key challenges of applying PETs at scale

Implementing privacy-enhancing technologies at scale is difficult due to microservice flexibility, the need for fine-grained purpose limitation, and providing verifiable transparency.

#4about 5 minutes

A solution combining serverless and confidential computing

A proposed architecture uses serverless computing to isolate sensitive data logic within a trusted execution environment, combined with pseudonymization for end-to-end protection.

#5about 4 minutes

Enabling third-party verification with remote attestation

Remote attestation allows third parties to verify workloads, enabling trusted management of key services like KMS and attestation services for hardware-backed access control.

#6about 2 minutes

Summary of the data protection architecture

The solution combines serverless computing, end-to-end data protection, and third-party verification to secure sensitive data in microservices while preserving flexibility.

Related jobs
Jobs that call for the skills explored in this talk.

Matching moments

Introducing a two-stage data clean room solution
02:42 MIN

Introducing a two-stage data clean room solution

TikTok's Privacy Innovation

Practical applications and use cases for TEEs
05:06 MIN

Practical applications and use cases for TEEs

This Machine Ends Data Breaches

Limitations of existing data privacy solutions
02:41 MIN

Limitations of existing data privacy solutions

TikTok's Privacy Innovation

Data breaches are a persistent threat for all companies
04:24 MIN

Data breaches are a persistent threat for all companies

This Machine Ends Data Breaches

Building trusted environments for responsible AI
01:47 MIN

Building trusted environments for responsible AI

Bringing AI Everywhere

Exploring the confidential computing ecosystem
06:15 MIN

Exploring the confidential computing ecosystem

This Machine Ends Data Breaches

Protecting sensitive data with privacy guardrails
02:42 MIN

Protecting sensitive data with privacy guardrails

Beyond the Hype: Building Trustworthy and Reliable LLM Applications with Guardrails

Q&A on microservice architecture and security
11:25 MIN

Q&A on microservice architecture and security

Security Challenges of Breaking A Monolith

Featured Partners

Related Videos

See all videos
TikTok's Privacy Innovation20:46

TikTok's Privacy Innovation

Mingshen Sun

This Machine Ends Data Breaches59:34

This Machine Ends Data Breaches

Liz Moy

Beyond the Hype: Building Trustworthy and Reliable LLM Applications with Guardrails29:00

Beyond the Hype: Building Trustworthy and Reliable LLM Applications with Guardrails

Alex Soto

Break the Chain: Decentralized solutions for today’s Web2.0 privacy problems29:31

Break the Chain: Decentralized solutions for today’s Web2.0 privacy problems

Adam Larter

GenAI Security: Navigating the Unseen Iceberg24:33

GenAI Security: Navigating the Unseen Iceberg

Maish Saidel-Keesing

You can’t hack what you can’t see29:34

You can’t hack what you can’t see

Reto Kaeser

Prompt Injection, Poisoning & More: The Dark Side of LLMs23:24

Prompt Injection, Poisoning & More: The Dark Side of LLMs

Keno Dreßel

Secure and Private AI - DeepMask04:57

Secure and Private AI - DeepMask

Hissan Usmani

Related Articles

View all articles
CH
Chris Heilmann
WebMCP: Empowering Agents as First-Class Citizens of the Web
WebMCP is an exciting W3C proposal that just landed in Chrome Canary to try out . The idea is that you can use some HTML attributes on a form or register JavaScript tool methods to give agents direct access to content. This gives us as content prov...
WebMCP: Empowering Agents as First-Class Citizens of the Web
CH
Chris Heilmann
Dev Digest 134 - Where pixels sing?
News and ArticlesWeAreDevelopers LIVE Data and Security Day is on Wednesday, 25/09/2024. Learn about OPC UA Updates, Best Practices for Using GitHub Secrets, Passwordless Web 1.5, Emerging AI Security Risks, Data Privacy in LLMs and get a chance to t...
Dev Digest 134 - Where pixels sing?
CH
Chris Heilmann
Dev Digest 129 - Now that's what I call private data!
News and ArticlesAfter declaring Google a monopoly there are now considerations to force it to break up - isn't that what the whole Alphabet thing was about? In the last act of Crowdstrike coverage here, they released a deep analysis of the outage th...
Dev Digest 129 - Now that's what I call private data!

From learning to earning

Jobs that call for the skills explored in this talk.