YoVDO

Coconut-SVSM - Early Attestation to Unlock Persistent State - KVM Forum

Offered By: KVM Forum via YouTube

Tags

Confidential Computing Courses Virtualization Courses Secure Boot Courses KVM Courses Remote Attestation Courses UEFI Courses AMD SEV-SNP Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore the ongoing work towards stateful services in the Coconut-SVSM platform for providing secure services to Confidential Virtual Machine guests on AMD SEV-SNP. Delve into the challenges and solutions for preserving state across reboots, enabling fully functional vTPM and persistent secure UEFI variable store for Secure Boot. Learn about the implementation of encrypted persistent storage backed by the host hypervisor, the remote attestation process for key retrieval, and the use of a host-side proxy for server communication. Examine current challenges, potential attacks, and future developments in supporting persistent state in SVSM. Gain insights from Stefano Garzarella, Principal Software Engineer at Red Hat and maintainer of Linux's vsock subsystem, and Oliver Steffen, Software Engineer specializing in confidential virtualization and virtual firmware.

Syllabus

Coconut-SVSM: Early attestation to unlock persistent state by Stefano Garzarella & Oliver Steffen


Taught by

KVM Forum

Related Courses

Exploring Modern and Secure Operations of Kubernetes Clusters on the Edge
Open Data Science via YouTube Using the Observer Effect and Cyber Feng Shui - Jacob Torrey
Hack In The Box Security Conference via YouTube OAT - Attesting Operation Integrity of Embedded Devices
IEEE via YouTube The Remote Working Security Conundrum - What Is Reasonably Secure Anyway?
USENIX via YouTube Riverbed - Enforcing User-defined Privacy Constraints in Distributed Web Services
USENIX via YouTube