How can I run my top secret code and data on any cloud hosting provider such that everyone even the hosting vendor with root is denied access ? ... a research proposal
What is the current state of either userspace or OS architecture such that only processes running with a one time expiring key can gain access to OS managed resources ( memory/networking/CPU)? It is not that data structures managed by the OS are all encrypted, rather that they appear encrypted to non key holders. Users running under root also must have such a key. Basically remove the notion of root with its unlimited powers. How far along is any project gotten so far towards providing this goal?
It does not go unnoticed that to solve the issue of an underlying hypervisor like OS having access to my computation I could scatter my code and data across multiple cloud providers and reconstitute downstream on my own local client such that no single cloud OS can gain any semantics
Perhaps userspace application level is better suited than the OS to implement this scatter then gather distributed encrypted chunking of compute and data
... the analogy would be a biological organism who's cells function in tiny disperse bodies where the entire organism only coalesces after the state of each cell is reported back to my secure client running locally ... sure this is computationally inefficient however I am willing to pay this price for ultimate privacy ... any security less than this is a joke since I cannot prove that the powers to be in today's cloud compute environments do not have their fingers in the pie