# PrivateCore > Mediated Wiki article. Canonical URL: https://mediated.wiki/source/PrivateCore > Markdown URL: https://mediated.wiki/source/PrivateCore.md > Source: https://en.wikipedia.org/wiki/PrivateCore > Source revision: 1357136400 > License: Creative Commons Attribution-ShareAlike 4.0 International (https://creativecommons.org/licenses/by-sa/4.0/) Californian company PrivateCore Type Subsidiary Industry Encryption Founded October 19, 2011; 14 years ago (2011-10-19)[1] Founders Oded Horovitz Steve Weis Headquarters Palo Alto, California , U.S. Area served Worldwide Key people Oded Horovitz (CEO, co-founder) Steve Weis (CTO, co-founder) Todd Thiemann (VP Marketing) Carl Waldspurger (advisor) Parent Meta Platforms (2014 - present) Website www.privatecore.com **PrivateCore** is a venture-backed startup located in [Palo Alto, California](/source/Palo_Alto%2C_California) that develops software to secure server data through server attestation and memory [encryption](/source/Encryption). The company's attestation and memory encryption technology fills a gap that exists between “[data in motion](/source/Data_in_motion)” encryption ([TLS](/source/Transport_Layer_Security), [email encryption](/source/Email_encryption)) and “[data at rest](/source/Data_at_rest)” encryption ([disk encryption](/source/Disk_encryption), [tape encryption](/source/Linear_Tape-Open#Encryption)) by protecting “[data in use](/source/Data_in_use)” ([random access memory](/source/Random_access_memory)). PrivateCore memory encryption technology protects against threats to servers such as [cold boot attacks](/source/Cold_boot_attack), hardware [advanced persistent threats](/source/Advanced_persistent_threat), [rootkits](/source/Rootkits)/bootkits, computer hardware [supply chain attacks](/source/Supply_chain_attack), and physical threats to servers from insiders. PrivateCore was acquired by Facebook (now [Meta Platforms](/source/Meta_Platforms)) on 7 August 2014. ## History PrivateCore was founded in 2011 by security veterans from [VMware](/source/VMware) and [Google](/source/Google) with [seed funding](/source/Seed_money) from [Foundation Capital](/source/Foundation_Capital).[2] PrivateCore “virtualizes” physical security and enables service providers and enterprises to deploy servers processing sensitive data in outsourced environments while maintaining security around data in use.[3] The company's memory encryption technology has been spurred by a number of industry trends including the increasing sophistication of hackers, a larger number of servers in outsourced environments, larger amounts of sensitive data being placed in [persistent](/source/Persistence_(computer_science)) memory, and [x86 virtualization](/source/X86_virtualization) technology which can increase the environment attack surface. PrivateCore was acquired by [Facebook](/source/Facebook%2C_Inc.), a deal that was announced on 7 August 2014.[4][5] ## Technology PrivateCore's focus is securing data-in-use on [x86](/source/X86) servers. The company has taken advantage of recent microprocessor innovations including larger microprocessor caches and hardware cryptographic acceleration technology that enable more effective methods of encrypting memory while maintaining acceptable application performance. The technology approach goes beyond previous academic research efforts such as [TRESOR](/source/TRESOR). PrivateCore assumes that the only element that needs to be trusted in a system is the Central Processing Unit (CPU). The firm uses [Trusted Platform Module](/source/Trusted_Platform_Module) (TPM) chips and Intel [Trusted Execution Technology](/source/Trusted_Execution_Technology) (Intel TXT) to provide remote server attestation. PrivateCore also supports the cryptographic hardware acceleration provided by Intel [AES-NI](/source/AES_instruction_set) technology. PrivateCore technology is positioned as being most applicable to outsourced or hosted environments where the enterprise cannot have trust in the computing infrastructure.[6] ## Products The PrivateCore vCage product portfolio comprises vCage Manager and vCage Host. vCage Manager validates the integrity of [x86](/source/X86) servers running Linux as well as the vCage Host. vCage Host installs on bare-metal servers and provides a hardened hypervisor based on KVM that can secure server random access memory (RAM) with [AES encryption](/source/AES_encryption). vCage Host does this by loading a secure hypervisor into the CPU cache and acting as a gateway to encrypt memory paging in and out between the CPU cache and RAM. vCage memory encryption leverages the [KVM](/source/Kernel-based_Virtual_Machine) hypervisor but also has the potential to support other hypervisors. vCage Host supports existing KVM management tools. vCage supports a number of use cases including creating [OpenStack](/source/OpenStack) trusted computing pools as well as protecting x86 servers in co-location and bare-metal cloud environments. vCage Manager and vCage Host became generally available on 11 February 2014.[7] ## References 1. **[^](#cite_ref-1)** ["PrivateCore.com WHOIS, DNS, & Domain Info - DomainTools"](http://whois.domaintools.com/privatecore.com). *[WHOIS](/source/WHOIS)*. Retrieved 2016-03-21. 1. **[^](#cite_ref-Angellist_2-0)** [Angellist, PrivateCore, June 6, 2012: "PrivateCore"](https://angel.co/privatecore) 1. **[^](#cite_ref-DarkReading_3-0)** [Dark Reading, Robert Lemos, January 31, 2013:"The Physical Security Factor With Cloud Providers"](http://www.darkreading.com/cloud/the-physical-security-factor-with-cloud/240147567) 1. **[^](#cite_ref-Reuters_4-0)** [Reuters, Kurt Wagner, August 7, 2014:"Facebook Acquires Security Startup PrivateCore to Better Protect Its Data Centers"](http://recode.net/2014/08/07/facebook-privatecore/) 1. **[^](#cite_ref-TechCrunch_5-0)** Perez, Sarah (2014-08-07). ["Facebook Buys Secure Server Technology Provider PrivateCore"](https://techcrunch.com/2014/08/07/facebook-buys-secure-server-technology-provider-privatecore/). *TechCrunch*. Retrieved 2024-06-20. 1. **[^](#cite_ref-StartUpBeat_6-0)** [StartUpBeat, StartUpBeat Editor, June 25, 2012:"PrivateCore has built a private computing platform that gives users a high level of data security, online or off"](http://startupbeat.com/2012/06/25/privatecore-has-built-a-private-computing-platform-that-gives-users-a-high-level-of-data-security-online-or-off/) [Archived](https://web.archive.org/web/20160303215119/http://startupbeat.com/2012/06/25/privatecore-has-built-a-private-computing-platform-that-gives-users-a-high-level-of-data-security-online-or-off/) 2016-03-03 at the [Wayback Machine](/source/Wayback_Machine) 1. **[^](#cite_ref-Government_Computer_News_7-0)** [GCN, John Moore, March 12, 2014:"How to lock down data in use -- and in the cloud"](http://gcn.com/Articles/2014/03/12/data-in-use-encryption.aspx) [Archived](https://web.archive.org/web/20140427091522/http://gcn.com/Articles/2014/03/12/data-in-use-encryption.aspx) 2014-04-27 at the [Wayback Machine](/source/Wayback_Machine) ## External links - [Official website](http://www.privatecore.com) - [Physical Privilege Escalation and Mitigation in the x86 World](https://www.secwest.net/), talk given by the founders at [CanSecWest](https://en.wikipedia.org/w/index.php?title=CanSecWest&action=edit&redlink=1) 2013 --- Adapted from the Wikipedia article [PrivateCore](https://en.wikipedia.org/wiki/PrivateCore) by Wikipedia contributors ([contributor history](https://en.wikipedia.org/wiki/PrivateCore?action=history)). Available under [Creative Commons Attribution-ShareAlike 4.0 International](https://creativecommons.org/licenses/by-sa/4.0/). Changes may have been made.