Remember when Apple first introduced Touch ID? The thought of storing your fingerprint on a phone that could be lost or stolen seemed risky. Yet today, we think nothing of it. This transformation in mobile security offers a glimpse into the future of enterprise computing, according to Anjuna CEO Ayal Yogev.
In a recent episode of Category Visionaries, Ayal unveiled how confidential computing is poised to transform enterprise security the same way secure enclaves revolutionized mobile devices.
The Root of All Security Problems
For decades, enterprise security has faced a fundamental vulnerability. As Ayal explains, “When you kind of peel the layers of the onion of, you know, 80% of security problems, you get to that same root cause, which is once somebody gets access to your infrastructure, it’s game over. They just have access to everything that you do.”
The problem is architectural: when applications process data, they must decrypt it and load it into memory. At that point, anyone with infrastructure access can view the data in its exposed state. Until now, the industry’s response has been to build increasingly complex systems to prevent access – essentially trying to make the walls higher and stronger.
The Mobile Security Revolution
The solution emerged from an unexpected place – your smartphone. “It actually started on the phones,” Ayal reveals. “You have biometric data on the phone, your fingerprint or face id, which is obviously super sensitive. And a mobile device is something that can get lost pretty easily.”
Apple pioneered the solution using a secure computing environment in ARM chipsets called Trust Zone. This technology ensures that even if someone gains physical access to your lost phone, they can’t access your biometric data.
The Enterprise Evolution
This mobile innovation sparked a broader revolution. “All the CPU vendors realize very quickly this is going to be even more powerful on the server side because that’s where enterprises keep their sensitive data,” Ayal explains.
Intel, AMD, Nvidia, and ARM have now built similar technology into their server processors. As Ayal describes it, they’ve “added something into the chipset to finally solve that problem, to basically make sure that even if you do have, you know, full access, physical or root access to a machine, you’re not going to be able to look at that data.”
The VMware Parallel
This architectural shift mirrors another transformative moment in computing history – virtualization. “Before VMware, we had, you know, 10% utilization of servers in the data center,” Ayal notes. CPU vendors added virtualization capabilities, but adoption remained low because it required rebuilding everything from scratch.
VMware solved this by creating a software layer that made virtualization accessible without requiring application rewrites. Within years, virtualization became ubiquitous. Today, as Ayal observes, “there’s almost no workloads running in an un-virtualized environment.”
Real-World Impact
The practical implications are profound. Large banks are now moving sensitive customer data to the cloud for the first time. Software vendors can definitively tell customers, “No, we don’t have any access to your data within our platform and none of our employees have any access to your data.”
This isn’t just another security feature – it’s enabling entirely new business possibilities. As Ayal explains, “Security is an enabler. Right. If you build security the right way, then you can do things that you just couldn’t do before… The entire banking industry wouldn’t exist if we couldn’t trust banks to keep our money safe.”
The Future State
Just as we now take for granted the security of biometric data on our phones, confidential computing promises to make data security an inherent feature of enterprise computing rather than an endless arms race of prevention.
“This is such a fundamental change in how we do things that it was going to change the world of compute,” Ayal predicts. “It essentially enables us to put data and code, you know, in any environment.”
For technology leaders watching this space, confidential computing represents more than just another security solution. It’s a fundamental shift that could finally resolve the tension between cloud adoption and data security, enabling a future where trust is built into the foundation of computing itself.
Twitter
facebook
linkedin