That’s neat. Looks like that’s more recent than my most recent experience doing cloud work, but fully support it.
When I left there was some anti-fraud work being discussed around snooping on everyone’s executing processes to see who is doing bad things, and alerting when and if certain binaries were detected, and that was a little… gross.
Though, regardless of technical fixes, you’re still at the mercy of politics, policies, and people not doing sketchy shit. And, I’d also bet that not all of the smaller cloud providers are going to be doing the work for TDX or SEV implementations, so there’s still a big leap of trust you need of your provider, regardless of the existence of tech that could mitigate those issues.
That’s neat. Looks like that’s more recent than my most recent experience doing cloud work, but fully support it.
When I left there was some anti-fraud work being discussed around snooping on everyone’s executing processes to see who is doing bad things, and alerting when and if certain binaries were detected, and that was a little… gross.
Though, regardless of technical fixes, you’re still at the mercy of politics, policies, and people not doing sketchy shit. And, I’d also bet that not all of the smaller cloud providers are going to be doing the work for TDX or SEV implementations, so there’s still a big leap of trust you need of your provider, regardless of the existence of tech that could mitigate those issues.