Intel Trusted Domain Extensions (TDX) Host Kernel Support
Offered By: Linux Foundation via YouTube
Course Description
Overview
Explore Intel Trusted Domain Extensions (TDX) host kernel support in this 27-minute conference talk. Dive into the protection mechanisms for guest VMs against malicious hosts and physical attacks. Learn about the TDX module initialization process, design choices, and implementation details. Understand TDX memory management, kernel policies for converting system memory to TDX memory, and interactions with CPU/memory hotplug and kexec(). Gain insights into the future developments and references for further study on this crucial security technology for virtualized environments.
Syllabus
Intro
TDX Overview
TDX Module Memory Management
Initializing the TDX Module
High Level Design
TDX Memory Policy
Interaction with ACPI Memory Hotplug
Interaction with ACPI CPU Hotplug
Handle ACPI CPU/Memory Hotplug (2)
Kexec() Support
Future work
Reference
Taught by
Linux Foundation
Tags
Related Courses
Defending, Detecting, and Responding to Hardware and Firmware Attacks - Teddy Reed - USENIX Enigma Conference - 2016USENIX Enigma Conference via YouTube Getting Physical with USB Type-C - Windows 10 RAM Forensics and UEFI Attacks
Recon Conference via YouTube Analyzing UEFI BIOSes from Attacker & Defender Viewpoints
Black Hat via YouTube AP Power Sequence Subsystem in Zephyr
Linux Foundation via YouTube Cameras, Devicetree and ACPI: A Device Driver Perspective
Linux Foundation via YouTube