HackerTrans
TopNewTrendsCommentsPastAskShowJobs

sebgaj

no profile record

Submissions

Confidential Computing Explained: Learn about Intel SGX, TDX or AMD SEV

docs.enclaive.cloud
1 points·by sebgaj·قبل سنتين·1 comments

ChatGPTfirewall: Pal to cost-efficiently and privately chat with documents

github.com
3 points·by sebgaj·قبل سنتين·1 comments

Zip-NeRF: Anti-aliased grid-based neural radiance fields [video]

youtube.com
52 points·by sebgaj·قبل 3 سنوات·18 comments

[untitled]

1 points·by sebgaj·قبل 3 سنوات·0 comments

Tesla Model 3 hacked in less than 3 seconds

darkreading.com
2 points·by sebgaj·قبل 3 سنوات·4 comments

Biden administration wants to hold companies liable for bad cybersecurity

arstechnica.com
3 points·by sebgaj·قبل 3 سنوات·1 comments

Alternative to HSMs: Always Encrypted HashiCorp Vault by Enclaive

github.com
3 points·by sebgaj·قبل 3 سنوات·1 comments

[untitled]

1 points·by sebgaj·قبل 3 سنوات·0 comments

FOSDEM'23 tutorial: How to enclave applications in the cloud using Intel SGXv2

youtube.com
2 points·by sebgaj·قبل 3 سنوات·1 comments

[untitled]

1 points·by sebgaj·قبل 3 سنوات·0 comments

FOSDEM'23: Special Track on Open Source Confidential Computing

fosdem.org
2 points·by sebgaj·قبل 3 سنوات·1 comments

IBM Cloud Hacked

csoonline.com
5 points·by sebgaj·قبل 4 سنوات·1 comments

Azure's Cloud Computing 2.0 strategy is confidential

techcommunity.microsoft.com
2 points·by sebgaj·قبل 4 سنوات·1 comments

Containerizing code is dead. Long live Confidential Containers

hackernoon.com
2 points·by sebgaj·قبل 4 سنوات·0 comments

[untitled]

1 points·by sebgaj·قبل 4 سنوات·0 comments

Data-in-Use Encrypting MariaDB

github.com
3 points·by sebgaj·قبل 4 سنوات·0 comments

comments

sebgaj
·قبل سنتين·discuss
Hyperscalers like AWS, Azure or Google transition their datacenters to a confidential computing stack to protect their cloud against the growing invasion of hacks (eg. implemented by Russian, Chinese, or North Korean special hacking teams).

Do you think CC is the right mitigation to all the cloud threats?
sebgaj
·قبل سنتين·discuss
This project enables you to engage in secure and cost-effective conversations while safeguarding sensitive data and files:

- prompt ChatGPT with extensive documents or a large number of documents, overcoming the limitations of GPT-3's context capacity. For instance, it enables tokenization of materials such as books, electronic patient records, or contracts.

- opt in or out of pseudonymizing prompts, ensuring privacy by sanitizing personal information such as names, email addresses, and street names. If uncomfortable with potentially sensitive content within prompts, automated suggestions can be manually post-edited for added security and peace of mind.
sebgaj
·قبل 3 سنوات·discuss
Confidential Cloud computing is the answer and hyperscalers work on that. You literally put your data in a black box.
sebgaj
·قبل 3 سنوات·discuss
I would take any database (eg Mongo, Maria, …) patch out the „delete“ queries, and run the DB in a confidential cloud like enclaive.cloud. Leveraging attestation and confidential compute, one can add a proof that the DB does not allow for erasure. Running the DB in a (kubernetes) cluster on multiple clouds would ensure the fault tolerance known from blockchain ledgers.
sebgaj
·قبل 3 سنوات·discuss
Fully agree. The architecure design is weak, given the fact that TEE-based approaches allow the hardening of process isolation.
sebgaj
·قبل 3 سنوات·discuss
What bothers me is not that the hack is done in 3min, but the capability to open the front trunk and door while driving
sebgaj
·قبل 3 سنوات·discuss
HashiCorp vault is the de-facto key management solution to rotate keys in docker, docker swarm or k8s environments. So far, HashiCorp Vault allowed for data-at-rest encryption of keys and secrets.

The open sourced project "always encrypted Hashicorp vault" by team enclaive makes sure keys and secrets are encrypted at runtime (aka data-in-use encryption) without changing or limiting the functionality and performance of the vault.

Always encrypted Hashicorp vault is an attractive alternative to HSMs, allowing businesses to drastically reduces security expenses.
sebgaj
·قبل 3 سنوات·discuss
Hyperscalers are silently working on technologies to make cloud the safest places for workloads. Among the technologies is confidential cloud computing, isolating for the very first time applications from the infrastracture.
sebgaj
·قبل 3 سنوات·discuss
If folks are interested in running applications in Intel SGX enclaves in the cloud, giving your workload extra security and privacy power, follow this tutorial.
sebgaj
·قبل 3 سنوات·discuss
My argument is based on the increased entropy of cryptographic keys replacing user-chosen passwords. So brute-forcing and social engineering becomes harder.
sebgaj
·قبل 3 سنوات·discuss
Clearly more secure than password based authentication. I hope it will finally kill phishing attacks.
sebgaj
·قبل 3 سنوات·discuss
One of the top tier open source conferences in Europe holds a track on confidential computing. Videos available after the conference.
sebgaj
·قبل 4 سنوات·discuss
Researchers found security pitfalls in IBM’s cloud infrastructure
sebgaj
·قبل 4 سنوات·discuss
Video explains the principles of confidential cloud computing. A new technology hyperscalers are slowly adding to their offerings.
sebgaj
·قبل 4 سنوات·discuss
Nice job COSIC folks!