Anjuna Enterprise Enclaves
Updated Dec. 3 2020

Sponsored by the Machine Identity Management Development Fund, Anjuna has built an integration with Venafi to protect VCert certificate distribution with the hardware-grade secure memory and storage confines of an Anjuna Enterprise Enclave.
Business Outcomes
  • Eliminates the risk of a bad actor gaining access to VCert Certificates from host memory or disk

  • Removes the need for complex and expensive HSM implementations or cloud services

  • Secures the deployment application certificates in CI/CD pipelines where protections are critical

Integration Features
  • Operates transparently within Venafi VCert software

  • Completes VCert certificate distribution end-to-end with hardware-grade encryption

Solution Overview

Security teams often find it difficult to protect machine identities without using complex HSMs or cloud services, which also limit scalability, performance, and agility.  But without these protections, machine identity can be easily exposed through host memory, which must remain unencrypted to operate.

Leveraging increasingly ubiquitous industry-standard hardware encryption technologies present in modern CPUs and clouds such as Intel, AMD, Azure, AWS, and others, Anjuna Enterprise Enclaves virtually eliminates the risk of a data breach from insiders and bad actors, even in cases where a host is physically compromised.  With Anjuna, certs are secured by default everywhere. 

Sponsored by the Machine Identity Management Development Fund, Anjuna software has built an integration with Venafi to protect machine identities within the hardware-grade secure confines of an Anjuna Enterprise Enclave.   This provides additional runtime and storage protection invulnerable to malicious software, IT insiders, and bad actors.