Confidential Key Management (CKM) is a cloud-based service that enables customers to generate, store, exchange and replace keys over their entire life cycle. CKM is secured by the Trusted Execution Environment and powered by Intel® SGX technology, to ensure that no sensitive cryptographic data is ever exposed.
The main components of Confidential Key Management ecosystem are:
- Key and identity management,
- Trusted Execution Environment (TEE), and
- Custody and self-custody for digital assets.
The following sections describe each of these components.