Dont think can exist a provable inaccesible remote secret, and past iteration like intel SGX has been praised as a solution until they repeatedly demostrated to be broken.

A secret that is containerized in isolated processes on someone else machine is no more a secret, even if that "solution" brings an enanchement over non-isolated cloud data secrecy, its still a non-solution.