Share via

Confidential sample application

  • Article

To ensure and validate that the Sovereign Landing Zone (SLZ) deployed infrastructure serves the confidential needs of customer workloads, we designed a Human Resources (HR) confidential sample application that demonstrates how to:

  • Prevent Microsoft operators from accessing your data at rest, in transit, or in use when configured as directed.
  • Prevent unauthorized access, with focus on workloads that are running with Azure Confidential Computing resources.
  • Allow only customers with the proper access policies to access secret keys stored in protected managed enclaves. Microsoft personnel or anyone else can't access secret keys.
  • Validate that applied SLZ policies work as expected; policies are applied and enforced, and policies are auditable on change.

To learn more about deployment instructions and usage guidelines, see Confidential sample application.