Loading…

Sign up or log in to bookmark your favorites and sync them to your phone or calendar.

Advanced [clear filter]
Friday, October 30
 

06:00 GMT

Intel Virtualization Technology Extensions to Enable Hardware Isolated VMs - Sean Christopherson, Intel
Deploying virtual machines in an unsecured environment might expose a cloud tenant to risk of losing confidentiality and integrity of its sensitive data and IP, e.g. via attacks from privileged software, offline memory analysis, and active memory attacks at system interfaces. This talk will present an upcoming Intel technology to isolate VMs from many hardware and most software-based threats, by providing capabilities for confidentiality and integrity of memory, address translation, and cpu state, as well as secure interrupt and exception delivery, and remote attestation. Sean will provide an overview of the technology and its unique, novel features, and briefly cover the state of enabling in KVM and Qemu.

Speakers
avatar for Sean Christopherson

Sean Christopherson

Software Engineer, Intel
Sean is a reviewer for x86 KVM's VMX and MMU sub-sub-systems, and a prolific contributor to KVM. Sean is the lead KVM developer for SGX and TDX.



Friday October 30, 2020 06:00 - 06:30 GMT
KVM Theater
  KVM Forum, KVM
 

Twitter Feed