Explore the latest addition to public cloud offerings - confidential instance types - in this DevConf.CZ 2023 conference talk. Delve into the true meaning of "confidential" in cloud computing, focusing on the enhanced security guarantees provided by platforms like Microsoft Azure and Google Cloud Platform (GCP). Examine the requirements for Linux-based operating systems to leverage these security features, using Azure Confidential VMs as a case study. Learn about crucial aspects such as the boot process, guest image requirements, Unified Kernel Images (UKIs), full disk encryption with vTPMs, and PCR measurements. Gain insights into the current implementation status of these technologies in Fedora and RHEL distributions. Speaker Vitaly Kuznetsov guides you through this 36-minute exploration of cutting-edge cloud security measures, offering valuable knowledge for cloud professionals and enthusiasts alike.
Overview
Syllabus
Confidential VMs in the cloud - DevConf.CZ 2023
Taught by
DevConf