IBM Cloud Joins Blockchain Startup iExec to Increase the Security of Decentralized Computing

Wassim Bendella
Nov 21, 2018 · 4 min read

November 21, 2018 — Lyon, France. Empowered by the unique IBM approach to cloud security, iExec is extending the value of its cloud marketplace by helping enterprises run even their most sensitive workloads on shared hardware at the highest level of security. iExec’s story was recently featured on IBM’s blog, “Thoughts on Cloud”. An IBM workerpool has been made available on the iExec network.

Decentralized computing is the new growing trend shaking the IT industry, with the potential to reach tipping points over the next years. From startups to big corporations, all actors are striving to propose new solutions that enable trusted computing on third-party computers that are by default not trusted.

The next revolution is decentralized computing

The past few years have produced a steady stream of innovations and technologies. The startup iExec has leveraged the most recent advancements in blockchain, cryptography and CPU enclaves to become one of the leading forces designing the cloud of tomorrow.

iExec offers a decentralized marketplace for cloud computing resources. Blockchain is used to organize a market network where anyone can monetize their servers, applications, and datasets. In parallel, customers have access to a convenient and cost-effective cloud infrastructure for running task-based workloads.

But while in classic cloud models, trust is guaranteed by the high security of the provider’s data center, how can we ensure trust when tasks are allocated to computers that are by default, not trusted? How do we make it technically impossible for providers to gain any access to the data running on their machines?

Creating a secure, decentralized cloud

iExec can provide a high degree of security and privacy to the enterprises running code on its cloud thanks to the IBM zero-trust architecture. IBM is currently the only cloud provider that offers access to bare metal servers with Intel Software Guard Extensions (SGX) at data centers.

SGX is a technology that creates an “enclave” within a system, which is capable of running applications that are completely isolated from the host machine. It’s designed to ensure that even a root-level administrator can’t access or tamper with the code and data running in this enclave. This means it’s safe to execute code on SGX-enabled servers, regardless of your trust in the server’s owner.

“The IBM approach to cloud is predicated on the concept of a zero-trust architecture, whereby the user has complete assurance that no one else can access their data. This philosophy was a perfect fit with our own, and so we certified IBM Cloud as one of the first cloud resource providers globally in the iExec marketplace”, announces Lei Zhang, Director of Security Research & Development, iExec

Unlocking the benefits of decentralized cloud computing

The collaboration between iExec and IBM does not end there. IBM Cloud Data Shield is a new solution that uses runtime encryption to enable developers to adapt their existing applications to take advantage of SGX instead of having to build them with SGX compatibility from the ground up. iExec is already using Data Shield directly on the IBM Cloud Kubernetes Service.

“iExec was an excellent partner to work with and they were instrumental in providing inputs that drove capabilities like secrets provisioning and attestation in the IBM Cloud Data Shield product. The iExec platform leverages SGX technology to deliver secure provisioning of secrets for dapps ensuring the complete protection of data and application execution environment.” explains Karna Bojjireddy, Program Director, IBM Cloud Security.

An IBM workerpool has been made available for customers to use on iExec’s decentralized cloud Marketplace. As iExec continues to develop its offering, IBM Cloud and Intel SGX will play a key role in reinventing cloud computing and unlocking the benefits of decentralized computing for both providers and customers, even in the most privacy-demanding industries.


Blockchain-based Decentralized Cloud

Medium is an open platform where 170 million readers come to find insightful and dynamic thinking. Here, expert and undiscovered voices alike dive into the heart of any topic and bring new ideas to the surface. Learn more

Follow the writers, publications, and topics that matter to you, and you’ll see them on your homepage and in your inbox. Explore

If you have a story to tell, knowledge to share, or a perspective to offer — welcome home. It’s easy and free to post your thinking on any topic. Write on Medium

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store