What is Confidential Computing?
Confidential computing protects data while it’s being processed by running it inside Trusted Execution Environments (TEEs), which are hardware-isolated regions within the CPU. Your VM’s memory stays encrypted, blocking access from attackers, the hosting provider or even a faulty hypervisor, resulting in private workloads and true control over your server and data. Never trust, always verify.
With the latest generation, powerful AMD EPYC CPUs, our confidential VMs come equipped with SEV-SNP, allowing you to completely secure your data and privacy with a single click!
Benefits of Complete Memory Encryption
The powerful features that make AMD SEV-SNP the best choice for confidential computing.
Complete Encapsulation
Your virtual machine remains isolated from all other hosted VMs as well as the hypervisor, meaning that if they were to be compromised, your data cannot be exposed and remains safe.
Data Immutability
Once a memory page is allocated to a virtual machine, it is becomes immutable, ensuring that the hypervisor cannot modify the contents. This guarantees data integrity and prevents your virtual machine from being exploited by any potential security vulnerabilities.
Unaffected Performance
The protection mechanism does not affect the system performance due to the dedicated hardware acceleration, which actively offloads encryption and verification tasks, allowing these processes to occur in the background without affecting processing power.
Cryptographic Attestation
You can manually verify the integrity and security of your virtual machine, which enables you to ensure that the VM’s configuration and state have not been tampered with.
Industry Standards
An ideal solution for organizations required to comply with strict regulatory frameworks such as the GDPR, HIPAA, PCI-DSS, ISO 27001, and SOC 2. Confidential computing ensures these robust security and data protection standards are always met.
It’s Absolutely Free
While still a new technology, our cutting-edge cloud servers are already equipped with the powerful, secure and reliable AMD EPYC CPU cores, meaning that SEV-SNP is available for free for your servers.
How to Activate Confidential Computing
If you wish to get a fresh new server with AMD SEV-SNP, you can do so through our server configurator. Simply click the toggle button and SEV-SNP will be automatically enabled for your server once it’s deployed. It’s that simple!
If you already have a VPSBG cloud server without SEV, you can always activate it through the settings tab of your server management page. Please note that SEV-SNP is still experimental and some additional configuration actions might be required.
Useful Resources
Learn how to fully setup and manage your server with our tutorials and additional resources
Learn more about Secure Memory Encryption (SME) and Secure Encrypted Virtualization (SEV) using AMD’s official white paper.
Take a deep dive into the technology behind AMD’s SEV-SNP and take a closer look at the concept that enables confidential computing.
Learn how to perform AMD SEV-SNP attestation inside of your virtual machine to verify encryption and security.
