← Back to context

Comment by Stefan-H

1 day ago

Just like your mobile device is one end of the end-to-end encryption, the TEE is the other end. If properly implemented, the TEE would measure all software and ensure that there are no side channels that the sensitive data could be read from.

13 comments

Stefan-H

Reply
paxys  1 day ago

By that logic SSL/TLS is also end-to-end encryption, except it isn't

  • Stefan-H  1 day ago

    When the server is the final recipient of a message sent over TLS, then yes, that is end-to-end encryption (for instance if a load balancer is not decrypting traffic in the middle). If the message's final recipient is a third party, then you are correct, an additional layer of encryption would be necessary. The TEE is the execution environment that needs access to the decrypted data to process the AI operations, therefore it is one end of the end-to-end encryption.

    • shawnz  1 day ago

      This interpretation basically waters down the meaning of end-to-end encryption to the point of uselessness. You may as well just say "encryption".

      1 reply →

    • paxys  1 day ago

      No need to make up hypotheticals. The server isn't the final destination for your LLM requests. The reply needs to come back to you.

      8 replies →