Microsoft Introduces Confidential Live Migration for Azure Virtual Machines
Microsoft has announced Confidential Live Migration for Azure, a new feature designed to enable live migration of confidential virtual machines without compromising security and privacy safeguards. The capability helps move Intel® TDX Confidential VMs to updated infrastructure with limited interruption while helping protect VM memory and execution context during migration. Confidential Live Migration is designed to move a Confidential VM to another host while maintaining protections against privileged software access including attestation and policy enforcement, confidentiality and integrity.
The capability allows confidential workloads to be moved between physical hosts during maintenance or infrastructure events while preserving encryption and hardware-based protections. The goal is to reduce downtime and operational disruption for organizations running sensitive applications in Azure. Azure’s control plane coordinates the workflow, while MigTD and the TDX module help enforce attestation, key exchange and the one-way handoff within the confidential computing architecture.
Confidential computing uses hardware-backed technologies to protect data while it is being processed, helping organizations secure workloads handling regulated, proprietary or sensitive information. Microsoft said the new live migration capability extends those protections by supporting workload mobility without requiring applications to be shut down.
Posted by Redmondmag.com Editors on 06/04/2026