A Trusted Execution Environment relies on hardware, not just software, to keep code and data safe. A TEE is a physically isolated region of a processor, often called an enclave, where memory is encrypted and access is blocked to the host operating system, the hypervisor, and even a cloud provider administering the machine. Whatever runs inside stays hidden from everything outside it, and a process called remote attestation lets an external party cryptographically verify that the enclave is running genuine, unmodified code before trusting it with sensitive data.
Intel SGX, AMD SEV, and Intel TDX are the main commercial TEE technologies, and blockchain projects adopted them to tackle a problem zero-knowledge proofs also address: computing on private data using a public, distributed network. A typical Ethereum-style smart contract runs entirely in the open, so every input is visible on-chain; a TEE-based contract instead decrypts inputs only inside the enclave and publishes just the result, keeping details like bid amounts or credit data hidden from validators.
Beyond confidential contracts, TEEs secure validator signing keys, shield order flow from front-running, and relay verified off-chain data for oracles and cross-chain bridges. Privacy coin project Secret Network was the first mainnet to run general-purpose private smart contracts on SGX enclaves, Oasis Network's Sapphire runtime builds TEEs into its execution layer, and Phala Network offers off-chain confidential compute for AI agents.
TEEs are cheaper and faster to build with than pure cryptographic alternatives, but they concentrate trust in a chip vendor's manufacturing process. Side-channel and physical memory-bus attacks have repeatedly extracted enclave secrets in research settings, including from live blockchain deployments, which is why many projects now pair TEEs with cryptographic proofs or multi-vendor attestation rather than relying on hardware isolation alone.