I was talking to someone who said they didn't trust confidential computing.

Confidential computing and LLMs are both technologies that are useful ingredients, imperfect though they may be, to iterate towards something better.

If you were a security absolutist, SSL would never have been allowed, because you have to implicitly trust all certificate vendors to do their job well.

Over time we figured it out, e.g. with certificate transparency.

How did we figure it out? A messy process of humans talking to humans. And the world didn't explode and it's gotten radically better.

Also, for confidential computing in particular, a key customer is military defense contractors.

Do you trust the US military to be more paranoid than you about who can see their data?

If so, then if it's good enough for them, it is likely good enough for you.