Confidential Computing Meets Sovereign Cloud: Why ‘Data in Use’ Is the New Boundary

Canonical argues that data residency isn’t data sovereignty — because plaintext still exists in memory during computation. Confidential computing tries to close that gap by encrypting data ‘in use’ inside trusted execution environments (TEEs) and using attestation to shift trust from identities to verifiable state. Here’s what that means for OpenStack/OpenInfra and regulated cloud designs.