Thales S.A. announced a collaboration leveraging its CipherTrust Data Security Platform (CDSP) to support End-To-End Data Protection (E2EDP) on Google Cloud, using Confidential Computing (CC) from Google Cloud and trusted cloud independent attestation provided by Intel Trust Authority (ITA). The effort is a step forward in data security, giving enterprises additional controls to protect their data at rest, in transit, and in use. A majority of the 2023 Thales Cloud Security Study respondents reported having a significant amount of sensitive data stored and in use in the cloud.

Consequently, safeguarding sensitive data and associated workloads when stored or in use, is an increasing priority, especially for highly regulated industries such as financial services and healthcare. Thales's collaboration with Intel and Google Cloud provides certifiable controls for enterprises to fully protect their data end-to-end. This security platform is based on the principle of separation of duties, where the customer remains in control of the encryption keys and their location.

This approach enhances trust by holding each stakeholder responsible for their respective roles and reduces the ability for a malicious actor to access code and data at rest, in transit and while being executed. Customers can migrate existing workloads with sensitive data or create new workloads needing zero trust, confidential computing and Confidential AI to this security platform in Google Cloud to broaden data security, attestation and set the right authorizations. With end-to-end data protection, multiple parties can securely collaborate on various use cases, such as Confidential AI datasets and models as needed while preserving privacy, confidentiality, and compliance with privacy regulations.

The Thales CipherTrust Data Security Platform uses Intel Trust Authority as a zero-trust, independent attestation service for advanced security and scalable confidential computing. Consistent attestation to Trusted Execution Environments (TEE) that are based on Intel Trust Domain Extensions. This single, consistent attestation process provides assurance to any relying party that the TEE and any data and workloads running within it have not been compromised.