Connect with us

Hi, what are you looking for?


Security Architecture

VMware, Other Tech Giants Announce Push for Confidential Computing Standards

VMware partners with tech giants to accelerate the development of confidential computing applications.

In conjunction with the 2023 Confidential Computing Summit last week, VMware announced a partnership with tech giants to accelerate the development of confidential computing applications.

Confidential computing relies on a trusted execution environment that ensures the integrity and confidentiality of applications and data, even in the cloud and on third-party infrastructure.

With the emergence of multi-cloud deployments and machine learning, confidential computing is expected to help protect intellectual property and sensitive data, but its adoption lags due to difficulties in creating applications for it.

To help overcome obstacles in implementing confidential computing, VMware has been working on a developer-focused Certifier Framework for Confidential Computing project that now has support from AMD, Samsung, and members of the RISC-V Keystone community.

In a push for the adoption of confidential computing, the open source Certifier Framework provides a standardized, platform-agnostic API for building and operating confidential computing applications, which is paired with a policy evaluation server, the Certifier Service.

“The Certifier API greatly simplifies and unifies programming and operations support for multi-vendor Confidential Computing platforms by providing simple client trust management, including attestation evaluation, secure storage, platform initialization, secret sharing, secure channels and other services,” VMware explains.

The accompanying Certifier Service supports trust management, including attestation evaluation, application upgrade, and other related services.

Advertisement. Scroll to continue reading.

By offering support for defining and implementing trust policies, the Certifier Framework aims to simplify the development of privacy-focused applications, secure cloud workloads, and secret-preserving services.

VMware is inviting the community to review and contribute to the open source Certifier Framework, to standardize the platform-independent APIs and to drive the development of confidential computing code for x86, Arm, and RISC-V ecosystems.

“Confidential Computing has the potential to secure workloads no matter where they run including in multi-cloud and edge settings. The challenge has been to help customers adopt and implement the standard with ease,” VMware CTO Kit Colbert said.

Related: Intel Adds TDX to Confidential Computing Portfolio With Launch of 4th Gen Xeon Processors

Related: Securing Data-in-Use With Confidential Computing

Related: Tech Giants Join Forces on Confidential Computing

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join security experts as they discuss ZTNA’s untapped potential to both reduce cyber risk and empower the business.


Join Microsoft and Finite State for a webinar that will introduce a new strategy for securing the software supply chain.


Expert Insights

Related Content

Artificial Intelligence

ChatGPT is increasingly integrated into cybersecurity products and services as the industry is testing its capabilities and limitations.

Network Security

Attack surface management is nothing short of a complete methodology for providing effective cybersecurity. It doesn’t seek to protect everything, but concentrates on areas...

Identity & Access

Hackers rarely hack in anymore. They log in using stolen, weak, default, or otherwise compromised credentials. That’s why it’s so critical to break the...

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...


Government agencies in the United States have made progress in the implementation of the DMARC standard in response to a Department of Homeland Security...

Artificial Intelligence

Microsoft and Mitre release Arsenal plugin to help cybersecurity professionals emulate attacks on machine learning (ML) systems.

Risk Management

In this virtual summit, SecurityWeek brings together expert defenders to share best practices around reducing attack surfaces in modern computing.


Out of the 335 public recommendations on a comprehensive cybersecurity strategy made since 2010, 190 were not implemented by federal agencies as of December...