Karim Eldefrawy is Cofounder/CTO of Confidencial.io. He has 25+ years of experience in cybersecurity and 100+ published scientific works.
getty
The shift toward cloud computing and software as a service (SaaS) platforms has revolutionized how businesses operate, offering flexibility, scalability, efficiency and (sometimes) cost savings compared to in-house built services. However, this transformation is not without its Achilles' heel: data privacy and security.
Traditional SaaS platforms, for all their advantages, can pose significant risks to sensitive enterprise data—ranging from contracts and financial information to intellectual property. This vulnerability is a byproduct of the necessity to upload sensitive information to SaaS providers as part of the workflows they offer and, potentially, third parties such as the SaaS providers themselves.
Such a framework for enterprise data not only complicates compliance with privacy laws and security standards but also turns SaaS platforms into attractive targets for cyberattacks and cybercriminals. Some of the largest breaches and leaks in the past decades have been related to SaaS providers and affected thousands of businesses and often millions of individuals.
The Problem With Traditional SaaS
At its core, the traditional SaaS model requires enterprises to relinquish a degree of control and stewardship over their data. Once uploaded to a SaaS platform, the data resides on servers that could be anywhere in the world, often subject to the laws and regulations of the host country, which might not align well with the enterprise's data governance policies. This dispersal of (sensitive) data complicates compliance efforts, especially in industries regulated by strict data protection laws like GDPR in Europe or HIPAA in the United States.
Moreover, centralizing data from hundreds or thousands of businesses on SaaS platforms creates a highly attractive target for cyberattacks. A successful breach could lead to the compromise of vast amounts of sensitive data, inflicting reputational damage and financial losses on a major scale.
The Rise Of Data-Blind SaaS
I believe we are at the cusp of a paradigm shift toward a more secure and privacy-centric model, which we call the "data-blind SaaS." This new approach is predicated on the principle that if a service does not store or access enterprise data directly, it drastically reduces the risk of data breaches and simplifies compliance with data protection regulations. Advances in cryptography, automation, infrastructure as code, and cloud adoption, alongside the development of trusted and confidential computing, pave the way for this transformative model.
Data-blind SaaS prioritizes data privacy and security by ensuring that enterprises retain control over where their data resides and how it is managed. This model can leverage advanced cryptographic techniques such as threshold cryptography and secure multiparty computation, trusted execution environments, and homomorphic encryption (once efficient enough and standardized) to also process data without exposing it to the SaaS provider or any third party.
Practical Applications And The Future Landscape
Data-blind SaaS can significantly enhance the security and privacy of workflows that involve sensitive data exchanges. Secure document exchange, e-signature applications, procurement, contract workflows, large data transfer, and virtual data rooms or deal rooms are prime candidates for this approach. A data-blind service essentially acts as an orchestrator or web portal, executing processes in the browser through client-side end-to-end encryption. This means the only data handled directly is that which is stored in the enterprise's own cloud storage back end, effectively rendering the SaaS provider "blind" to the content.
This model, while not universally applicable to all SaaS workflows in the short term, opens a realm of possibilities for the future. As cryptographic technologies advance and become more standardized, the range of workflows that can be secured in this manner will undoubtedly expand. This evolution will gradually mitigate the inherent vulnerabilities of the traditional SaaS model, offering a more robust framework for data privacy and security.
Challenges Of Data-Blind SaaS
Despite the potential of data-blind SaaS, the transition will be gradual and not without challenges. Below are a few to consider.
Awareness And Adoption Hesitancy
The transition may be impeded by a general lack of awareness and reluctance to adopt new models, particularly within enterprise infrastructure. This hesitancy is amplified by the current absence of security-driven incentives for such a transition, barring significant regulatory changes.
Although data-blind SaaS directly addresses concerns related to data exposure to third parties—a factor potentially accelerating cloud adoption for latecomers—the cost implications remain a significant barrier. Nonetheless, if data-blind SaaS can demonstrably reduce costs while enhancing security, resistance may diminish.
Complex Computational Workflows
For the foreseeable future, workflows necessitating sophisticated back-end computations present a notable challenge for data-blind SaaS adoption. Given that such platforms will primarily facilitate computation at the client side or within (cloud-hosted) enterprise infrastructures, migrating such complex workflows remains a hurdle. This limitation underscores the necessity for advancements in edge computing and client-side processing capabilities.
Integration And Interoperability
The seamless interoperability enjoyed by traditional SaaS models, attributable to the ease of data movement and the standard practice of encrypting data only at rest and in transit, poses a challenge for data-blind SaaS. The requirement for unencrypted data viewing upon export from traditional SaaS platforms complicates the integration with a data-blind approach, highlighting a fundamental challenge in preserving data protection while maintaining ease of interoperability.
Customization Limitations
Data-blind SaaS models confront limitations in offering data-driven customization due to the inherent nature of the approach, which prevents the SaaS provider from accessing or storing the data directly. This restriction may impact the ability to deliver personalized services and features that rely on data analytics, posing a challenge to achieving parity with traditional SaaS offerings in terms of customization.
Over a longer horizon, the maturation and broader adoption of privacy-enhancing technologies such as trusted execution environments, secure multiparty computation and fully homomorphic encryption aim to overcome these challenges. The efficiency improvements and increasing practicality of these technologies, alongside hardware accelerators deployed in public clouds, herald a future where data-blind SaaS can fully harness its potential.
Final Thoughts
As we stand on the brink of this shift, it is clear that imagination and creativity will be key drivers in redefining the boundaries of what is possible in the realm of software services, steering the industry toward a future where data privacy and security are not just priorities but foundational principles.
Forbes Technology Council is an invitation-only community for world-class CIOs, CTOs and technology executives. Do I qualify?
