Digital services have been offered through remote systems for decades. The questions of how these systems can be built in a trustworthy manner and how their security properties can be understood are given fresh impetus by recent hardware developments, allowing a fuller, more general, exploration of the possibilities than has previously been seen in the literature. Drawing on and consolidating the disparate strains of research, technologies and methods employed throughout the adaptation of confidential computing, we present a novel, dedicated Confidential Remote Computing (CRC) model. CRC proposes a compact solution for next-generation applications to be built on strong hardware-based security primitives, control of secure software products' trusted computing base, and a way to make correct use of proofs and evidence reports generated by the attestation mechanisms. The CRC model illustrates the trade-offs between decentralisation, task size and transparency overhead. We conclude the paper with six lessons learned from our approach, and suggest two future research directions.

翻译：数字服务通过远程系统提供已有数十年历史。如何以可信方式构建这些系统、如何理解其安全属性——这些问题因近期硬件发展而获得新的动力，使得对可能性的探索比先前文献更为全面和普适。通过整合并巩固机密计算领域所采用的不同研究流派、技术与方法，我们提出了一个新颖且专门的机密远程计算（CRC）模型。CRC为基于强硬件安全原语、安全软件产品可信计算基控制以及正确利用证明机制生成的证据报告构建下一代应用提供了紧凑型解决方案。该模型阐明了去中心化、任务规模与透明性开销之间的权衡。我们在论文最后总结了从该方法中得出的六点经验，并提出了两个未来研究方向。