Azure Active Directory Data Security Considerations
This is a very interesting development. Encryption generally would solve a lot of problems around data sovereignty. So, encrypting the data, keeping the key and moving the data to the public cloud could basically address a lot of the risks. Today, it comes with a high price as the data which resides encrypted in the Cloud cannot be index (therefore is not searchable) nor can any operation be conducted.
The solution is homomorphic encryption, where a lot of research is done but it is still too slow. People at Microsoft Research now took a new angle on it: They took, what is already here and looked at the scenarios, which are already possible today.
The following article gives an interesting overview, what would be possible based on today’s research: A Cloud that Can’t Leak
Roger
Related posts
Roger,
Typo in the 2nd paragraph. It should read, “People at Microsoft Research now took a new angle on it”.
Saqib
Fixed. Thank you
Roger
Hi Roger,
So when you think this scheme will start making its way into the *aaS offerings by microsoft? I understand that is still a prototype and extremely slow, but I do think that it could be used for small amounts of highly confidential data.
Thoughts?
Saqib
Hi Saqib,
this is a very good question, which I currently do not have an answer yet. Typically it takes quite some while until technology from Research is available in a product, however I do not have experience in the Cloud yet. As this is a failry pressing problem, this will defintiely be something we will look at with the product team.
I know that this was kind of a “PR-anser” but it is all I have currently
Roger
Thanks Roger! Please do post any new updates / progress on this front to this blogpost. I am now following the comments on this blogpost, so I will get the updates.
Saqib