Mike Bursell

3049 points
User profile image.
UK

I've been in and around Open Source since around 1997, and have been running (GNU) Linux as my main desktop at home and work since then: not always easy...  I'm a security bod and architect, co-founder of the Enarx project, and am currently CEO of a start-up in the Confidential Computing space.  I have a blog - "Alice, Eve & Bob" - where I write (sometimes rather parenthetically) about security.  I live in the UK and like single malts.

Authored Content

Authored Comments

Kiko -

The answer is that you cannot be sure. When you run a workload on any system which is not owned by you, you cannot be certain that the owner or operator of that system is not looking at your data/algorithms, or that the stack they are running has not been compromised by a third party.

The only ways to make anything truly private is:
1) run it yourself on hardware that you own, and with software (and hardware!) that you trust; OR
2) use an HSM (Hardware Security Module). These are expensive, don't scale well, and are best for specific computational tasks such as key management.

If this is something you're interested in, we'd love ot see you over at https://enarx.io !

-Mike.

Felix -

I have a Samsung Galaxy Watch, and it comes with the app installed.

-Mike.