Effective March 1, 2025, you can keep your records in Azure confidential ledger (ACL) at the reduced price of ~$3/day per instance! The reduced price is for the computation and the ledger use. The price of any additional storage used will remain unchanged.
To tamper protect your records: Automatically create hash (e.g. MD5 or SHA256) of your blob storage data and keep those in Azure confidential ledger. For forensics, you can verify the integrity of the data against the signature in ACL. Imagine doing this as you are migrating data from one system to another, or when you restore archived records from cold storage. It is also valuable when there is a need to protect from insider/administrator risks and confidently report to authorities.
If you keep your data in Azure SQL database, you can use their security ledger feature to auto generate record digests and store them in confidential ledger for integrity protection and safeguarding. You can use the SQL stored procedure to verify that no tampering or administrator modifications occurred to your SQL data!
In addition, we are announcing the preview of User Defined Functions for Azure confidential ledger. Imagine doing a schema validation before writing data to the Ledger or using pattern matching to identify sensitive information in log messages and perform data massaging to mask it. To increase your awareness, request access for this preview via the sign-up form.
Get started by reading our documentation and trying out confidential ledger yourself!
_____________________________________________________________________________________________________
What is Azure confidential ledger and what is the change?
It is a tamper protected and auditable data store backed by a Merkle tree blockchain structure for sensitive records that require high levels of integrity protection and/or confidentiality. While customers from AI, financial services, healthcare, and supply chain continue to use the ledger for their business transaction’s archival needs and confidential data’s unique identifiers for audit purposes, we are acting on their feedback for scaling ledgers to more of their workloads with a more competitive price!
How can I use Azure confidential ledger?
- Azure SQL database ledger customers can enable confidential ledger as its trusted digest store to uplevel integrity and security protection posture
- Azure customers who use blob storage have found value in migrating their workloads to Azure with a tamper protection check via the Azure confidential ledger Marketplace App.
- Azure customers who use data stores and databases (e.g. Kusto, Cosmos, and Log Analytics) may benefit from auditability and traceability of logs being kept in the confidential ledger with new compliance certifications in SOC 2 Type 2 and ISO27001.
How much does Azure confidential ledger cost?
- Approximately $3/day/ledger
_____________________________________________________________________________________________________
Resources
- Explore the Azure confidential ledger documentation
- Read the blog post on: Integrity protect blob storage
- Read the blog post on: How to choose between ledger in Azure SQL Database and Azure Confidential Ledger
- Read the blog post on: Verify integrity of data transactions in Azure confidential ledger
- View our recent webinar in the Security Community
- Recent case studies: HB Antwerp & BeekeeperAI
Updated Mar 03, 2025
Version 7.0
ShubhraS
Microsoft
Microsoft
