Generally available: AMD confidential VM option for Azure Databricks
Published date: November 15, 2023
We are announcing the general availability of the AMD confidential VM option for Azure Databricks. This option lets users of Azure Databricks specify DCasv5 or ECasv5 series VMs for their Azure Databricks cluster driver node and worker nodes.
These confidential VMs are designed to offer a hardware-based trusted execution environment (TEE) leveraging AMD Secure Encrypted Virtualization (SEV) - Secure Nested Paging (SNP) technology. This hardens guest protections to help deny the hypervisor and other host management code access to VM memory and state and can help protect against operator access. Keys used for VM memory encryption are generated by a dedicated secure processor inside of the AMD CPU and cannot be read from software.
Confidential VMs for Azure Databricks are available in these regions:
North America: West US, East US,
Europe: North Europe, West Europe, Switzerland North, Italy North
Asia: Southeast Asia, Central India, East Asia, Japan East
For the most up-to-date information on regional availability, visit the Azure Global infrastructure site.
To learn more, read the announcement blog and the documentation.