Source linked

Apple запускает Private Cloud Compute на конфиденциальных виртуальных машинах Google Cloud

cloud.google.com@frontier_wire3 hours ago·Cybersecurity·2 comments

Инфраструктура PCC Apple теперь работает в Google Cloud с использованием графических процессоров Intel TDX и NVIDIA Blackwell, с аппаратными TEE и открытым исходным кодом для проверки конфиденциальности.

applegoogle cloudconfidential computingintel tdxnvidia blackwellpcc

Apple handed the keys to Google Cloud for its most sensitive AI infrastructure. At WWDC 2026, Apple confirmed that Private Cloud Compute (PCC) —the silicon-level secure enclave for offloading Apple Intelligence queries—is now built on top of Google Cloud’s Confidential Computing platform, using Intel TDX and NVIDIA Blackwell GPUs. That’s not a partnership announcement; it’s a tectonic shift in how hyperscalers earn trust for AI workloads.

Why Apple Dropped Its Own Hardware for Google’s Titanium

Apple doesn’t outsource security lightly. PCC was designed from the ground up to keep user data encrypted end-to-end, even from Apple itself. But scaling that to cloud inference required hardware guarantees that only a handful of providers can deliver. Google’s Titan chip provides the root of trust for the entire rack, while Intel TDX creates hardware-based Trusted Execution Environments (TEEs) on each CPU. NVIDIA Confidential Computing extends that isolation to the GPU memory bus on Blackwell GPUs, so no hypervisor, host OS, or even Google engineer can read the data during inference.

The Technical Stack: TDX + Blackwell + Open-Source Transparency

The collaboration isn’t just about buying VMs. Apple and Google co-engineered an open-source host stack for PCC that exposes every boot-time measurement and attestation report to external auditors. That’s rare for any cloud provider, let alone one hosting Apple’s crown-jewel privacy product. By baking Intel TDX’s memory encryption and attestation into the same control plane that manages NVIDIA Blackwell accelerators, the stack enforces that no privileged code can touch the model or its inputs—even if a compromise happens at the orchestrator layer.

What This Means for Confidential AI Everywhere

Google Cloud is now the only hyperscaler that can claim a production deployment of Confidential Computing spanning CPU and GPU for a customer with Apple’s security paranoia. The open-source host stack isn’t just altruism—it sets a bar that competitors like AWS Nitro or Azure Confidential VMs will have to match if they want to run similar privacy-critical AI workloads. Expect every enterprise with compliance-driven AI pipelines to start asking for attestation logs and hardware TEE support by default, not as an add-on.

Source: Powering the next era of Confidential AI
Domain: cloud.google.com

Read original source ->

External source stays available while the OJO article and comment thread stay local.

More in Cybersecurity

view topic
PyO3 nth_back Integer Underflow Exposes Arbitrary Memory Reads

An integer underflow in PyO3's nth_back iterator methods allows reading arbitrary memory past the end of Python list and tuple storage, affecting all versions 0.24.0 through 0.28.x.

The Gentlemen Ransomware Admin Doxxed to a 36-Year-Old in Izhevsk

Check Point ranks The Gentlemen as the second most active ransomware group by victim count in 2026, and OSINT trails the admin to Alexander Yapaev, a B2B marketing lead at a lighting firm in Russia.

ShinyHunters Hit 68% of Education Targets With Oracle PeopleSoft Zero-Day

A CVSS 9.8 remote code execution flaw was exploited as a zero-day against higher ed institutions before Oracle's June 10 advisory.

Yarbo's Hard-Coded MQTT Credentials Expose Entire Robot Fleet to Takeover

Two critical vulnerabilities let attackers with extracted credentials read telemetry and send commands to any Yarbo robot globally-no per-device authorization required.

Comments load interactively on the live page.