{"id":45677,"date":"2025-08-25T08:00:00","date_gmt":"2025-08-25T15:00:00","guid":{"rendered":""},"modified":"2025-08-25T16:42:43","modified_gmt":"2025-08-25T23:42:43","slug":"protecting-azure-infrastructure-from-silicon-to-systems","status":"publish","type":"post","link":"https:\/\/azure.microsoft.com\/en-us\/blog\/protecting-azure-infrastructure-from-silicon-to-systems\/","title":{"rendered":"Protecting Azure Infrastructure from silicon to systems"},"content":{"rendered":"\n

At Microsoft, secure design begins at the foundation of our computing stack\u2014the silicon level\u2014and extends through every layer of the cloud. Since launching the Secure Future Initiative (SFI)\u2014a company-wide commitment to security, we continue to prioritize delivering products and solutions that are secure by design<\/em>, secure by default<\/em>, and secure in operation<\/em>.<\/p>\n\n\n\n

SFI sits at the core of Azure\u2019s approach to designing hardware systems, reshaping the architecture, deployment, and operations of our physical cloud and AI infrastructure. Azure is redefining workload security from the datacenter to the edge. Our comprehensive approach includes Azure Boost<\/a>, which isolates control and data planes for virtual machines; the Azure Integrated HSM<\/a>, a custom security chip providing FIPS 140-3 Level 3 key protection within our servers; and confidential computing<\/a>, which protects data in-use through hardware-based trusted execution environments (TEEs).\u202f<\/p>\n\n\n\n

Microsoft has also made ongoing efforts to advance systematic security audits and contribute to the open-source community through Caliptra\u2014a silicon root-of-trust designed to anchor security in hardware. Combining these initiatives with technologies such as confidential computing and code transparency services, our aim is to ensure that every component in the supply chain can be securely verified.\u202f<\/p>\n\n\n\n

\"Building
Figure 1: Building blocks of Azure\u2019s hardware security\u202fArchitecture\u202f<\/em>.<\/figcaption><\/figure>\n\n\n\n

Purpose built silicon for defense-in-depth\u202f<\/h2>\n\n\n\n

Azure Boost<\/strong><\/a> serves as the system\u2019s\u202fsecurity controller, managing secure access to Azure. Only systems with a verified and approved security configuration are granted access.\u202f<\/p>\n\n\n\n

To enhance security and performance, Azure Boost\u202foffloads control plane services\u202ffrom the host CPU to a dedicated Azure Boost system controller. This setup creates a hardware separation \u202fbetween Azure\u2019s control plane\u2014running on the Azure Boost controller\u2014and customer workloads\u2014running on the CPU\u2014ensuring strong isolation and protection.<\/p>\n\n\n\n

Azure Integrated HSM<\/a> is a server local Hardware Security Module (HSM) for high-assurance workloads. It is designed to meet the stringent requirements of the Federal Information Processing Standards (FIPS) 140-3 Level 3 security requirements, requiring strong isolation, tamper-resistant hardware, identity-based authentication, and automatic zeroization. Azure Integrated HSM protects keys in-use, by ensuring keys always remain within the bounds of the HSM.\u202f<\/p>\n\n\n\n

Unlike centralized remote HSM services, Azure Integrated HSM eliminates network roundtrips for key operations and avoids the need to release keys into the workload environment. Instead of relying on remote access, the Azure Integrated HSM is securely bound to the local workload and provides oracle-style key usage to authorized services within the local environment.\u202f<\/p>\n\n\n\n

\n
Learn more about Azure Integrated HSM<\/a><\/div>\n<\/div>\n\n\n
\"A<\/figure>\n\n\n\n

Azure Datacenter Secure Control Module<\/a> (DC-SCM)\u2014DC-SCM is a security and server control module that contains Hydra\u2014a security-focused Board Management Controller (BMC) design, with an integrated root-of-trust and hardware-based security protection on all management interfaces.\u202fThis root of trust restricts unauthorized access to BMC firmware and ensures the firmware is authenticated and cryptographically measured.\u202f<\/p>\n\n\n\n

Confidential Computing offers a spectrum of guarantees<\/h2>\n\n\n\n

Confidential computing<\/strong><\/a> makes use of hardware-based Trusted Execution Environments (TEEs) to protect workloads\u2014such as virtual machines\u2014from other system software, including the hypervisor.\u202f<\/p>\n\n\n\n

Microsoft, a founding member of the Confidential Computing Consortium<\/a>, works closely with CPU and GPU manufacturers to design and integrate confidential computing technologies directly into their hardware. Earlier this year at the Confidential Computing Summit we defined a spectrum of guarantees<\/a> users can enable with confidential computing when they port their applications, including:\u202f <\/p>\n\n\n\n

    \n
  1. On<\/strong> by default, is the lift and shift existing applications with minimal change.\u202f\u202f <\/li>\n\n\n\n
  2. Build in<\/strong> confidential computing by designing services and applications that make deeper use of hardware-based protections.<\/li>\n\n\n\n
  3. Leverage transparent confidential computing to gain deeper insights into how confidential services interact and operate securely.<\/li>\n<\/ol>\n\n\n\n
    \"A
    Figure 2. Confidential Computing\u2014Spectrum of Guarantees<\/em><\/em>.<\/figcaption><\/figure>\n\n\n\n

    Azure has the most comprehensive portfolio of confidential computing solutions<\/a>, including confidential virtual machines, containers, generative AI, and services like Azure Confidential Ledger, Azure Attestation, and Managed HSM\u2014each designed to protect code and data throughout its lifecycle using hardware-backed security. <\/p>\n\n\n\n

    Hardware Security Transparency<\/h2>\n\n\n\n

    Caliptra<\/strong><\/a>\u202fis a hardware root of trust that plays a critical role in securing devices. It anchors the chain of trust directly in silicon, establishing foundational security properties that support the integrity of higher-level features. This foundation provides workloads the ability to verify the code and configuration of the underlying platform, enabling workloads establish trust in the hardware platform. <\/p>\n\n\n\n

    Caliptra is a fully open-source silicon root of trust developed through a collaboration between Microsoft, AMD, Google, and NVIDIA. In April, we released Caliptra 2.0, which included Adams Bridge\u2014an open-source accelerator designed for post-quantum resilient cryptography. This integration made Caliptra the first open-source root of trust to feature hardened post-quantum cryptography, driving broader adoption across the hardware ecosystem. <\/p>\n\n\n\n

    Systematic Security Reviews<\/strong><\/a> play a critical role in protecting hardware infrastructure, which relies on both low-level hardware features and the firmware that runs on top of them. Ensuring firmware security involves rigorous code scanning, continuous security reviews, and hardware-based attestation.\u202f<\/p>\n\n\n\n

    Historically, Microsoft conducted these reviews internally. To enhance transparency and extend security assurance beyond Microsoft, we partnered with Google and the Open Compute Project in 2023 to establish OCP SAFE<\/a>\u2014a framework for systematic security reviews.<\/p>\n\n\n\n

    Under OCP SAFE, approved Security Review Providers (SRPs) perform independent evaluations and issue verifiable endorsements of a manufacturer\u2019s security compliance. These endorsements serve as trusted evidence, supporting secure device attestations and reinforcing confidence in the hardware supply chains.\u202f<\/p>\n\n\n\n

    Enhancing security with Code Transparency Services<\/h2>\n\n\n\n

    Code Transparency Services<\/strong><\/a> (CTS) is an immutable ledger technology built to meet the standards of Supply Chain Integrity, Transparency, and Trust (SCITT<\/a>). It operates exclusively within\u202fconfidential computing environments, enhancing trust in Azure\u2019s hardware and firmware by ensuring that every component is verifiably secure\u202f.<\/p>\n\n\n\n

    CTS addresses key challenges in firmware provenance, integrity, and auditability across both first-party and third-party supply chains. When paired with a\u202fsilicon root of trust like Caliptra, and supported by audits such as OCP-SAFE, CTS ensures that hardware and firmware are authorized, non-repudiable, and immutably auditable.\u202f<\/p>\n\n\n\n

    Today, CTS is a central component in Azure\u2019s confidential cloud services.\u202fIn addition to Azure\u2019s own usage, CTS will be available as a managed service\u2014allowing Azure customers to create and operate their own transparency service instances.\u202f<\/p>\n\n\n\n

    Staying secure with Microsoft<\/h2>\n\n\n\n

    Microsoft\u2019s Secure Future Initiative (SFI) provides a guiding framework for building secure and trustworthy cloud infrastructure. By embedding security into every layer\u2014from silicon to systems to services\u2014Azure takes a defense-in-depth approach to cloud security. Through innovations like Azure Boost, Azure Integrated HSM, and confidential computing, and through collaborative efforts such as Caliptra, OCP SAFE, and SCITT, Microsoft is not only securing today\u2019s workloads but also laying the foundation for a more secure and transparent future.\u202f<\/p>\n\n\n\n