Back To Schedule
Friday, October 30 • 06:00 - 06:30
Intel Virtualization Technology Extensions to Enable Hardware Isolated VMs - Sean Christopherson, Intel

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Deploying virtual machines in an unsecured environment might expose a cloud tenant to risk of losing confidentiality and integrity of its sensitive data and IP, e.g. via attacks from privileged software, offline memory analysis, and active memory attacks at system interfaces. This talk will present an upcoming Intel technology to isolate VMs from many hardware and most software-based threats, by providing capabilities for confidentiality and integrity of memory, address translation, and cpu state, as well as secure interrupt and exception delivery, and remote attestation. Sean will provide an overview of the technology and its unique, novel features, and briefly cover the state of enabling in KVM and Qemu.

avatar for Sean Christopherson

Sean Christopherson

Software Engineer, Intel
Sean is a reviewer for x86 KVM's VMX and MMU sub-sub-systems, and a prolific contributor to KVM. Sean is the lead KVM developer for SGX and TDX.

Friday October 30, 2020 06:00 - 06:30 GMT
KVM Theater
  KVM Forum, KVM