{% extends "confidential-computing/base_confidential-computing.html" %} {% block title %}Confidential AI{% endblock %} {% block meta_description %} Run your confidential AI workloads with our Ubuntu confidential computing stack. {% endblock %} {% block meta_copydoc %} https://docs.google.com/document/d/1TZ_jK3ReetAU2qA_YxfZL8i4j_lFidcF6F2Xup8R8Nc/edit {% endblock %} {% block body_class %} is-paper {% endblock body_class %} {% block content %}

Ubuntu for confidential AI

Protect the confidentiality and integrity of your AI workloads at run-time across public and private clouds.

Contact us
{{ image(url="https://assets.ubuntu.com/v1/3ff12e71-Image.png", alt="", width="1232", height="526", hi_def=True, loading="auto") | safe }}

Why you need Ubuntu for confidential AI

  • Harness AI's power with utmost security assurance
  • Protect your security-sensitive AI data at run-time
  • Fine-tune your model securely with your enterprise data
  • Safeguard your intellectual property and protect your model
  • Deploy your AI workload securely even in untrusted environments
  • Strengthen your compliance posture

How confidential AI works

Confidential AI is made possible thanks to confidential computing. Unlike traditional VMs, where you have to trust that the host software is also secure, confidential VMs only require you to trust the software running within it and the platform's hardware root of trust.

{{ image(url="https://assets.ubuntu.com/v1/01006e0d-ai-diagram@2x.png", alt="", width="600", height="338", hi_def=True, loading="lazy") | safe }}

CPU-based confidential computing

Ubuntu confidential VMs protect your workload's computation while in the CPU. It makes use of the newer hardware encryption engines to keep your data encrypted in system memory.

GPU-based confidential computing

Nvidia H100 Tensor Core GPUs protect the confidentiality and integrity of the workload's computation within the GPU, using built-in firewalls.

Securely integrated CPU-GPU solution

The CPU-GPU communication is encrypted, and a strong cryptographic guarantee is available for all remote parties to remotely attest the security claims of the platform.

Learn more about confidential computing ›

Confidential AI with Ubuntu and Nvidia H100 GPUs

Enterprises using machine learning in the cloud are concerned about the security of their data and the protection of their models. Industry regulations often prevent sharing sensitive data, hindering AI's full potential in important fields.

To address these challenges on Azure, a confidential AI preview is available with Ubuntu confidential VM using AMD 4th Gen EPYC processors with SEV-SNP, alongside NVIDIA H100 GPUs.

{{ image(url="https://assets.ubuntu.com/v1/fc0006be-cvm-diagram@2x.png", alt="Ubuntu confidential VMs establish a secure encrypted communication channel with Nvidia H100 GPUs", width="600", height="338", hi_def=True, loading="lazy") | safe }}

Sign up for the Azure preview of confidential AI with Ubuntu ›

Use Ubuntu Pro to further harden your confidential VMs

While confidential VMs can protect your workload from external threats, vulnerabilities from within their boundaries remain a concern. This is where Ubuntu Pro becomes essential, to keep your guest CVM software stack always patched and up-to-date.

Learn more about Ubuntu Pro ›

Deploy confidential computing on your private cloud with Ubuntu and Intel TDX

Your on-premises servers are vulnerable to insiders' attacks, and they also run the same privileged system software found in the public cloud. Therefore, they are susceptible to the same vulnerabilities and security risks.

To help you seamlessly enable confidential computing within your private cloud, Canonical offers a tech preview of Intel TDX on Ubuntu 24.04 which provides base host OS, guest OS, and remote attestation functionalities.

Deploy Intel TDX with Ubuntu 24.04 today ›

Learn more about confidential computing

Contact us to discuss your use case ›

{% endblock %}