Explore AMD's Secure Encrypted Virtualization (SEV) technology and its latest advancement, SEV-TIO, in this 30-minute KVM Forum conference talk. Delve into the world of confidential computing, where guest VMs are protected from hosting environments through data-in-use confidentiality and integrity measures. Learn how SEV-TIO extends the trust boundary to include PCI devices, enhancing security and improving I/O performance for AMD SEV-SNP guests. Discover the role of the new PCI TEE Device Interface Security Protocol (TDISP) specification in standardizing device interactions with confidential computing technologies. Gain insights into the benefits of SEV-TIO and understand how host software like KVM/QEMU manages secure device-guest bindings and lifecycles, including initialization, attestation, and resource assignment processes.
AMD SEV-TIO - Trusted I/O for Secure Encrypted Virtualization
Overview
Syllabus
AMD SEV-TIO: Trusted I/O for Secure Encrypted Virtualization
Taught by
KVM Forum
Related Courses
-
AMD SEV-SNP Attestation - Establishing Trust in Guests
-
Zero-Trust vTPM for AMD SEV-SNP Confidential Virtual Machines
-
Remote Attestation in AMD SEV-SNP Confidential VMs
-
Exploring I/O Support for Virtualization-Based Trusted Execution Environments
-
Exploiting Unprotected I/O Operations in AMD's Secure Encrypted Virtualization
-
Accounting and Page Migration Challenges in Secure Guests Using FD-Based Private Memory
