Providing Confidential Guest Services with a Secure VM Service Module on AMD
Offered By: Linux Foundation via YouTube
Course Description
Overview
Explore the AMD SEV-SNP architecture's support for sub-dividing confidential guests through VM Privilege Levels (VMPLs) in this 28-minute conference talk. Delve into the Secure VM Service Module (SVSM), its role in providing secure services like secure boot, and its importance in enabling live migration of guest images. Learn about the VMPL architecture, necessary Linux kernel and KVM support, and ongoing efforts to create an open-source SVSM for Linux. Gain insights into guest security, integrity protection, boot flow, virtual TPM, and the development of Linux SVSN. Presented by Thomas Lendacky from AMD at a Linux Foundation event, this talk covers key aspects of confidential guest services and secure virtualization.
Syllabus
Introduction
Guest Security
Guest Register State
Integrity Protection
VM Privilege Levels
Creating an SVSM
GHCB Event
Boot Flow
Live Migration
Overview
Virtual TPM
Rust Version
Linux SVSN
Questions
Taught by
Linux Foundation
Tags
Related Courses
Upcoming x86 Technologies for Malicious Hypervisor ProtectionLinux Foundation via YouTube What's New in Azure Confidential Computing
Microsoft via YouTube A Systematic Look at Ciphertext Side Channels on AMD SEV-SNP
IEEE via YouTube SEV-SNP Development Status Update - Current Progress and Future Plans
Linux Foundation via YouTube AMD SEV-SNP Attestation - Establishing Trust in Guests
Linux Foundation via YouTube