Confidential Machine Learning within Graphcore IPUs. (arXiv:2205.09005v1 [cs.CR])

We present IPU Trusted Extensions (ITX), a set of experimental hardware
extensions that enable trusted execution environments in Graphcore's AI
accelerators.

ITX enables the execution of AI workloads with strong confidentiality and
integrity guarantees at low performance overheads. ITX isolates workloads from
untrusted hosts, and ensures their data and models remain encrypted at all
times except within the IPU. ITX includes a hardware root-of-trust that
provides attestation capabilities and orchestrates trusted execution, and
on-chip programmable cryptographic engines for authenticated encryption …

confidential machine machine learning