Gilles Seghaier
Cofounder & CTPO of Astran
Actions
Gilles is the co-founder and CTPO of Astran and a speaker at international conferences, including KubeCon Europe 2024, where he has addressed topics related to data confidentiality and operational resilience in multicloud environments. He brings a strong software engineering background and extensive experience from leading software companies, including Salesforce. As the technical and product architect behind Astran’s platform, Gilles leads the design of a secure, cloud-agnostic architecture aimed at addressing modern challenges in data protection, resilience, and large-scale distributed systems. His deep focus on customer needs, combined with a pragmatic and research-driven approach to innovation, positions him at the head of Astran’s Research & Development efforts.
Kubernetes in the Confidential Computing Marvels: Unlocking sMPC across multi-cloud clusters
Embark on the captivating journey of leveraging Kubernetes in a multi-cloud setting for Secure Multiparty Computation (sMPC).
Witness the wonders of confidential computing, from secret sharing to collaborative computing, all empowered by Kubernetes.
sMPC, a cryptographic technique for secure joint computation over private inputs, takes center stage, ensuring robust data security in a distributed, dynamic environment.
Independent Kubernetes clusters materialize as secure parties, collaborating and computing seamlessly without revealing the secret input provided by a external client.
This presentation by Gilles Seghaier, Astran's co-founder & CTPO, delves into the synergy of Kubernetes multi-clusters and advanced service mesh features based on Istio, in order to confidentially compute on secret data.
Designing Sovereign Data Flows and Storage Across Multiple Public Clouds: From Theory to Practice
Sovereign cloud discussions are often framed around a single Cloud Service Provider (CSP), focusing on workload location, cloud regions, or provider nationality. In practice, sovereignty is defined by data control: where data is stored, how it flows, who can access it, and under which trust assumptions, especially in multi-cloud environments.
This talk presents a production-grade approach to designing sovereign data storage and flows across multiple public cloud providers. Based on real platform architecture, applied security research, and regulatory review, it explains how multi-cloud, when treated as a security primitive rather than a deployment choice, can help achieve sovereignty objectives. It also highlights why naive designs fail due to implicit CSP trust, centralized key management, insider access, and correlated outages.
The session explains how the architecture was validated in 2023 by the French Data Protection Authority (CNIL), the independent regulator enforcing GDPR in France, and has since been deployed in production.
It introduces the cryptographic foundations used to enforce data control by design, including fragmentation, threshold-based secret sharing, erasure coding, and all-or-nothing techniques, ensuring that no single CSP can access meaningful data.
The talk concludes with a concrete multi-cloud implementation, providing actionable patterns to build cloud-native systems where sovereignty is enforced by architecture and cryptography, not by CSP-centric assumptions or contractual trust.
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top