Tech

AMD EPYC Secure Encryption Virtualization protects Confidential virtual machines for Google Compute Engine

Credit: Google

AMD and Google Cloud today announced the beta availability of Confidential Virtual Machines (VMs) for Google Compute Engine powered by 2nd Gen AMD EPYC processors, taking advantage of the processors’ advanced security features.

The first product in the Google Cloud Confidential Computing portfolio, Confidential VMs, enables customers for the first time to encrypt data in-use while it is being processed and not just when at rest and in-transit. Based on the N2D family of VMs for Google Compute Engine, Confidential VMs provide customers high performance processing for the most demanding computational tasks and enable encryption for even the most sensitive data in the cloud while it is being processed.

The Confidential VMs from Google provide:

  • Real time encryption-in-use –Google Cloud customers can encrypt data-in-use, taking advantage of advanced security features offered by the 2nd Gen AMD EPYC processor together with Confidential Computing cloud services, bringing a breakthrough in the level of cloud data protection,
  • Secure Encrypted Virtualization (SEV) – an advanced security feature available on AMD EPYC processors, which encrypts VM memory using a dedicated per-VM key that is generated and managed by the embedded security processor,
  • “Lift and Shift Confidentiality”  AMD and Google have simplified the use of Confidential Computing, making the transition to Confidential VMs seamless as customers do not need to make any code changes to their applications to benefit from these VMs,
  • High-performance VMs –Confidential VMs offer similar performance to Google N2D VMs, which are powered by high-performance 2nd Gen AMD EPYC processors.

Driving Innovation with AMD and Google

Confidential Computing can unlock computing scenarios previously not possible, including:

  • Multi-party Computation – Situations in which organizations want to collaborate with each other on private datasets, while protecting the confidentiality of the data.
  • Data Access and Confidentiality – Confidential VMs can limit the exposure of the data and who can access it by encrypting the data even when it is being processed.

Organizations will be able to share confidential data sets and collaborate on research in the cloud across geographies and competitors confidently due to the high-performance capabilities and advanced security features of the AMD EPYC processors coupled with the innovative Confidential Computing technology offered by Google.

AMD EPYC Processors, Powering the Modern Security Focused Cloud

AMD EPYC processors power more than 120 VM types from cloud providers and hosts around the world that support a variety of workloads including high-performance, general purpose, memory bound and more.

As well, AMD is committed to supporting the advancement for security across cloud computing as it recently joined the Confidential Computing Consortium.

Confidential VMs are available to all GCP customers in the following GCP regions – asia-southeast1, europe-west1, europe-west4, us-central1 and are available for Google Compute Engine in Beta.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this: