Providing Confidential Guest Services with a Secure VM Service Module on AMD
Offered By: Linux Foundation via YouTube
Course Description
Overview
Explore the AMD SEV-SNP architecture's support for sub-dividing confidential guests through VM Privilege Levels (VMPLs) in this 28-minute conference talk. Delve into the Secure VM Service Module (SVSM), its role in providing secure services like secure boot, and its importance in enabling live migration of guest images. Learn about the VMPL architecture, necessary Linux kernel and KVM support, and ongoing efforts to create an open-source SVSM for Linux. Gain insights into guest security, integrity protection, boot flow, virtual TPM, and the development of Linux SVSN. Presented by Thomas Lendacky from AMD at a Linux Foundation event, this talk covers key aspects of confidential guest services and secure virtualization.
Syllabus
Introduction
Guest Security
Guest Register State
Integrity Protection
VM Privilege Levels
Creating an SVSM
GHCB Event
Boot Flow
Live Migration
Overview
Virtual TPM
Rust Version
Linux SVSN
Questions
Taught by
Linux Foundation
Tags
Related Courses
Confidential Computing in Cloud and EdgeRSA Conference via YouTube The Rise of Confidential Computing
RSA Conference via YouTube Enabling Rack-Scale Confidential Computing Using Heterogeneous Trusted Execution Environment
IEEE via YouTube Architectural Extensions for Hardware Virtual Machine Isolation to Advance Confidential Computing in Public Clouds
Linux Foundation via YouTube The Open Enclave SDK - Confidential Computing with Trusted Apps
Linux Foundation via YouTube