Azure confidential computing instances offer the opportunity to quickly protect any application from insider threats, leveraging Intel® Software Guard Extensions (SGX)-enabled CPUs and Anjuna Enterprise Enclave software. With a single command, Anjuna automatically creates a secure enclave that isolates and encrypts all application resources in runtime, at rest, and on the network, to achieve the strongest end-to-end data protection available. No changes to the application code or SDKs are required.
HashiCorp Consul is a popular service mesh solution that provides service discovery, configuration, and segmentation. While Consul protects data-in-transit, like virtually all applications, it is only as secure as the host on which it runs. An attacker that is able to compromise the host could enable access to the key-value store, ACL tokens, Connect CA configuration, and more. Moreover, an attacker who is able to access memory can compromise virtually all Consul data--at rest, in memory, and on the network.
Anjuna Enterprise Enclave for HashiCorp Consul provides an effective and easy solution for protecting Consul data against insider threats--even in the case of a complete host compromise.
The Anjuna Enterprise Enclave for HashiCorp Consul provides a pre-configured instance and step-by-step instructions that help you quickly get a fully Anjuna-protected service-mesh sidecar-proxy running in an enclave on an Azure confidential computing instance.