Hardware Assured Security Compliance across Public and Private Clouds
Cloud Raxak, in collaboration with Intel, has developed an industry first solution to provide Hardware Assured Security Compliance on IBM SoftLayer public and Hewlett Packard Enterprise Helion private clouds using a hardware basis of trust.
The Raxak Protect security compliance platform leverages Intel® TXT built into Intel processor-based servers and Intel Cloud Integrity Technology (CIT), to automatically secure OpenStack Private Clouds and Containers from boot-time to run-time.
Hardware Assured Compliance enables enterprises to keep their IBM SoftLayer public and HPE Helion OpenStack Private clouds continuously compliant with the stringent security requirements of regulated industries including finance, healthcare, retail, telecom, and the federal government
Intel® Cloud Integrity Technology
Intel® Cloud Integrity Technology leverages Intel® TXT code inside Intel® server processors, to provide a root of trust in the datacenter, enabling software-controlled visibility and policy enforcement of hardware-secured asset tags and launch-time measurements of the BIOS, Operating System (OS), and hypervisor. The trust and asset tag attestation information can then be used to provide workload verification, remediation, reporting, and compliance in both public and private cloud environments.
Enterprise Use Cases
Use Model 1: Trusted Platform and Workloads Launch
Attestation provides information about platform and workloads (VMs, containers, NfVs…) trust to improve response to malware threats
Use Model 2: Trusted Compute Pools
Attestation provides information to inform Intel of which systems are trustworthy
for hosting secure workloads
Use Model 3: Compliance
Attestations allow Intel to verify platform and workloads trust for comparison against policy and use in audit – this include geo boundaries
Intel Chain of Trust in the Data Center
Deliver the Intel chain of trust across across a broad ecosystem of Compute, Storage and Network devices.