Volume 15, Number 3

Confidential Computing in Edge- Cloud Hierarchy

  Authors

Yeghisabet Alaverdyan1,2, Suren Poghosyan2 and Vahagn Poghosyans2,3, 1EKENG CJSC, Armenia, 2Institute for
Informatics and Automation Problems of NAS RA, Armenia, 3Synopsys, Armenia

  Abstract

The paper introduces confidential computing approaches focused on protecting hierarchical data within edge-cloud network. Edge-cloud network suggests splitting and sharing data between the main cloud and the range of networks near the endpoint devices. The proposed solutions allow data in this two-level hierarchy to be protected via embedding traditional encryption at rest and in transit while leaving the remaining security issues, such as sensitive data and operations in use, in the scope of trusted execution environment. Hierarchical data for each network device are linked and identified through distinct paths between edge and main cloud using individual blockchain. Methods for data and cryptographic key splitting between the edge and the main cloud are based on strong authentication techniques ensuring the shared data confidentiality, integrity and availability.

  Keywords

Edge-cloud architecture, hierarchical data, confidential computing, key splitting, authentication, blockchain