A secure enclave is a hardware-isolated area within a processor that protects cryptographic operations and the storage of sensitive data. Even if the main operating system is compromised, data inside the enclave remains protected. Well-known implementations include Apple’s Secure Enclave, Intel SGX, and ARM TrustZone. Secure enclaves are used for storing biometric data, cryptographic keys, and payment information. In an ISMS the secure enclave is a hardware control for confidentiality and integrity of highly sensitive data.