Securing Applications with Intel® SGX


Intel Corporation in partnership with Fortanix Inc. and Secretarium Ltd are pleased to offer you an invitation to join us at CodeNode (SkillsMatter) on Tuesday, 22 October 2019, for the first London meetup event with a focus on "Securing Applications with Intel® SGX”.

Security with Rust & Intel® SGX


Wednesday, October 30 2019 | 6:00 PM to 9:30 PM PDT
Intel SC12, 2200 Mission College Blvd · Santa Clara, CA

Talk 1: Be secure with Rust & Intel SGX by Jethro Beekman Ph.D, Technical Director, Fortanix
Talk 2: Life of an async fn by Tyler Mandry, Software Engineer, Google

Runtime Encryption® – A New Paradigm in Security

Imagine Applications running so securely that even if the Infrastructure, the OS or even root access are compromised, the app remains secure.

This is what Fortanix RunTime Encryption®(RTE) is all about. RTE keeps applications, their data and their keys, fully encrypted while running. Using Intel® SGX, Fortanix® creates a virtually impenetrable fortress that runs signed applications in completely protected states. ​

Self-Defending Key Management Service (SDKMS)

Fortanix SDKMS™, the world’s first unified key management platform built on HSM-grade security, secures any KMS use case including TDE, Multi-cloud and Blockchain, yet also delivers Tokenization, Secrets Management and HSM. Secured with Intel® SGX, built for cloud scale and resiliency, SDKMS™ reduces threats, improves security and consolidates costs.

Get hands-on experience with Fortanix SDKMS and Runtime Encryption.

Secure Cloud Adoption using Fortanix SDKMS

Modern enterprises have begun a historic migration to the public cloud and are now using hybrid or multi-cloud for their workloads. However key management is one of the most difficult puzzles to solve in cloud migration. Let us show you how Fortanix SDKMS can solve cloud key management use cases, including BYOK. ​

Enclave Development Platform

Fortanix Enclave development platform (EDP) is the preferred way to write Intel® SGX enclaves from scratch.

Introducing IBM Cloud Data Shield powered by Fortanix Runtime Encryption®

IBM Cloud Data Shield, powered by Fortanix, provides runtime memory encryption for applications to protect data in use, leveraging Intel® SGX. Cloud Data Shield transforms containerized applications to protect sensitive data in the cloud.

Equinix SmartKey powered by Fortanix – HSM as a Service

Powered by Fortanix, Equinix SmartKey™ is a SaaS-based secure key management and cryptography service which protects data in public, private, hybrid or multicloud environments.

Register for SmartKey

Our Mission


We believe that security should be deterministic. Traditionally, encryption has secured data at rest and in motion, leaving it vulnerable in use. We use Runtime Encryption® to protect data in use, providing complete security protection throughout the lifecycle of the data.

The Problem

When it comes to protecting your data, encryption is one of the most popular and effective controls. But the data must be encrypted at each step of its lifecycle.

Data at rest

Encryption of data at rest protects data when stored in digital forms on persistent media. This is typically solved by transparent data encryption or self-encrypting drives.

Data in motion

Encryption of data in motion protects data when it’s being transported. This is typically solved by Transport Layer Security (TLS/SSL) or VPN tunnels.

Runtime / Data in use?

Once the application starts to run, data in use by CPU and memory is vulnerable to a variety of attacks including malicious insiders, root users, credential compromise, OS zero-day, network intruders, and others.

Current solutions try to address this runtime vulnerability using isolation and detection. But complete protection remains elusive given the ever-increasing complexity of infrastructure and breadth of attack surface.

Fortanix Approach

Runtime Encryption®
Page 1 Created with Sketch.

A new approach is required to protect the runtime environment. The approach must assume compromise and encrypt like everyone is watching! We call this approach Runtime Encryption® . Runtime Encryption® is a class of security solutions that keeps data encrypted even when in use by applications.

Fortanix created a Runtime Encryption® platform that enables your application to process and work with encrypted data. Fortanix uses Intel SGX and creates a portable security envelope that runs signed applications in completely protected states. Fortanix protects applications even if the infrastructure is compromised. Fortanix further provides a HSM and Key Management solution built using this technology.

Learn more about SDKMS

Self-Defending Key Management Service (SDKMS) provides HSM-grade security with software-like flexibility.

Secure Cloud Adoption using Fortanix SDKMS

Key management is one of the most difficult puzzles to solve in cloud. Let us show you how Fortanix SDKMS can solve cloud key management use cases, including BYOK.​

Secure your apps with Runtime Encryption® technology

Join the Runtime Encryption® revolution to secure your applications with Fortanix technology. Contact us to get started.

Trusted by

Ready to test Fortanix SDKMS? Request a demo