Protect sovereign data with Azure Confidential Computing

Important

This content is archived and is not being updated. For the latest documentation, go to What's new in Microsoft Cloud for Sovereignty. For the latest release plans, go to Dynamics 365, Power Platform, and Cloud for Industry release plans.

Enabled for Public preview General availability
Admins, makers, marketers, or analysts, automatically Oct 3, 2023 Nov 15, 2023

Business value

Microsoft Cloud for Sovereignty enables customers to protect their data and resources in ways that comply with their specific regulatory, security, and sovereignty requirements. When combined with Azure Confidential Computing, it provides control over access to customer workloads through hardware-based trusted execution environments, protecting data in use. The solution also offers confidential secrets management, confidential analytics services, and other features to enhance data sovereignty and security.

Feature details

Microsoft Cloud for Sovereignty is a solution that helps customers protect their data and resources in compliance with their regulatory, security, and sovereignty requirements. It combines with Azure Confidential Computing (ACC) to provide control over access to customer workloads through trusted execution environments (TEEs), protecting data in use. ACC offers features such as confidential secrets management, confidential analytics services, and confidentiality of the entire root of trust, from hardware to application. Customers can use the Sovereign Landing Zone to adopt confidential computing features within a compliant and sovereign environment.

The latest enhancements to ACC support customer sovereignty by removing or reducing privileged data access for a cloud provider operator and other actors, including software such as the hypervisor. ACC helps protect data throughout its lifecycle in addition to existing solutions, which protect data at rest and in transit.

See also

Azure Confidential Computing (docs)