nQrux® Confidential Computing Engine (CCE)
nQrux® CCE offers customisable solutions protecting data, code execution, and AI models in distributed environments, such as cloud and edge.
nQrux® Confidential Computing Engine (CCE) offers customisable solutions protecting data, code execution, and AI (Artificial Intelligence) models in distributed environments, such as cloud and edge. nQrux® CCE solution is tailored based on customer application, needs, and requirements, to host customised computing resources (e.g. CPU cores and specific accelerators).
nQrux® CCE (product code: XIP7700) securely processes data and code remotely uploaded by client nodes over a protected communication channel. Clients can be categorised into groups with defined access rights to the CCE resources. For instance, one client node can provide AI models for an embedded AI accelerator inside the CCE, other nodes (such as sensors) can upload data to be processed in the AI computation, and yet another client node may have the right to access the result of the computation.
Communication of data and code to the CCE is protected with hardware-based TLS 1.3. Access policies are enforced with hardware isolation of resources and TLS 1.3 client-authentication, so that only clients with appropriate certificates are allowed to access specific resources.
The cryptographic algorithms are selected and optimised based on customer security and performance requirements.
Key features
- Complete physical isolation of code execution enclave from host system.
- Data and code are protected in transit with hardware-based TLS 1.3
- Versatile computational enclave: RISC-V core(s), Computational Accelerators, customer-specific cores and accelerators.
- CAVP validation: All applicable IP cores from Xiphera have received the CAVP validation from the U.S. National Institute of Standards and Technology (NIST).
- Customised implementation of the computing environment and cryptographic protections based on customer application, security, and performance requirements.
Applications for nQrux® Confidential Computing Engine
nQrux® CCE solution is tailored based on customer application and needs. The solution can be used to secure, for example, the following application scenarios:
Open solution flyer from below. For more information about nQrux® CCE and technical details, including FPGA resources, peak performance, as well as ordering instructions, contact us.