Audience
Professional teams wanting a tool to create additional isolation to further protect their highly sensitive data
About AWS Nitro Enclaves
AWS Nitro Enclaves enables customers to create isolated compute environments to further protect and securely process highly sensitive data such as personally identifiable information (PII), healthcare, financial, and intellectual property data within their Amazon EC2 instances. Nitro Enclaves uses the same Nitro Hypervisor technology that provides CPU and memory isolation for EC2 instances. Nitro Enclaves helps customers reduce the attack surface area for their most sensitive data processing applications. Enclaves offer an isolated, hardened, and highly constrained environment to host security-critical applications. Nitro Enclaves includes cryptographic attestation for your software, so that you can be sure that only authorized code is running, as well as integration with the AWS Key Management Service so that only your enclaves can access sensitive material.
Other Popular Alternatives & Related Software
AWS Fargate
AWS Fargate is a serverless compute engine for containers that works with both Amazon Elastic Container Service (ECS) and Amazon Elastic Kubernetes Service (EKS). Fargate makes it easy for you to focus on building your applications. Fargate removes the need to provision and manage servers, lets you specify and pay for resources per application, and improves security through application isolation by design. Fargate allocates the right amount of compute, eliminating the need to choose instances and scale cluster capacity. You only pay for the resources required to run your containers, so there is no over-provisioning and paying for additional servers. Fargate runs each task or pod in its own kernel providing the tasks and pods their own isolated compute environment. This enables your application to have workload isolation and improved security by design.
Learn more
Google Cloud Confidential VMs
Google Cloud’s Confidential Computing delivers hardware-based Trusted Execution Environments to encrypt data in use, completing the encryption lifecycle alongside data at rest and in transit. It includes Confidential VMs (using AMD SEV, SEV-SNP, Intel TDX, and NVIDIA confidential GPUs), Confidential Space (enabling secure multi-party data sharing), Google Cloud Attestation, and split-trust encryption tooling. Confidential VMs support workloads in Compute Engine and are available across services such as Dataproc, Dataflow, GKE, and Gemini Enterprise Agent Platform Notebooks. It ensures runtime encryption of memory, isolation from host OS/hypervisor, and attestation features so customers gain proof that their workloads run in a secure enclave. Use cases range from confidential analytics and federated learning in healthcare and finance to generative-AI model hosting and collaborative supply-chain data sharing.
Learn more
Phala
Phala is a hardware-secured cloud platform designed to help organizations deploy confidential AI with verifiable trust and enterprise-grade privacy. Using Trusted Execution Environments (TEEs), Phala ensures that AI models, data, and computations run inside fully isolated, encrypted environments that even cloud providers cannot access. The platform includes pre-configured confidential AI models, confidential VMs, and GPU TEE support for NVIDIA H100, H200, and B200 hardware, delivering near-native performance with complete privacy. With Phala Cloud, developers can build, containerize, and deploy encrypted AI applications in minutes while relying on automated attestations and strong compliance guarantees. Phala powers sensitive workloads across finance, healthcare, AI SaaS, decentralized AI, and other privacy-critical industries. Trusted by thousands of developers and enterprise customers, Phala enables businesses to build AI that users can trust.
Learn more
NVIDIA Confidential Computing
NVIDIA Confidential Computing secures data in use, protecting AI models and workloads as they execute, by leveraging hardware-based trusted execution environments built into NVIDIA Hopper and Blackwell architectures and supported platforms. It enables enterprises to deploy AI training and inference, whether on-premises, in the cloud, or at the edge, with no changes to model code, while ensuring the confidentiality and integrity of both data and models. Key features include zero-trust isolation of workloads from the host OS or hypervisor, device attestation to verify that only legitimate NVIDIA hardware is running the code, and full compatibility with shared or remote infrastructure for ISVs, enterprises, and multi-tenant environments. By safeguarding proprietary AI models, inputs, weights, and inference activities, NVIDIA Confidential Computing enables high-performance AI without compromising security or performance.
Learn more
Integrations
Company Information
Amazon
Founded: 1994
United States
aws.amazon.com/ec2/nitro/nitro-enclaves/
Videos and Screen Captures
Other Useful Business Software
Data management solutions for confident marketing
Verify, deduplicate, manipulate, and assign records automatically to keep your CRM data accurate, complete, and ready for business.
Product Details
Platforms Supported
Cloud
Training
Documentation
Webinars
In Person
Videos
Support
Phone Support
24/7 Live Support
Online
