Overview
Explore the intricacies of secure live migration for encrypted virtual machines in this 21-minute conference talk presented by Tobin Feldman-Fitzthum and Dov Murik from IBM at a Linux Foundation event. Delve into the world of confidential computing and learn about SEV (Secure Encrypted Virtualization) live migration techniques. Understand the challenges and solutions related to memory encryption and firmware migration support. Examine the migration handler process and address safety concerns. Discover the specifics of SEV-ES (Encrypted State) and SEV-SNP (Secure Nested Paging) live migration, including the use of trampolines. Conclude by considering open questions in this rapidly evolving field of secure virtualization technology.
Syllabus
Intro
Confidential Computing
SEV Live Migration
Memory Encryption
Firmware Migration Support
Migration Handler
Is it safe?
SEV-ES Live Migration
Trampoline
SEV-SNP Live Migration
Open Questions
Taught by
Linux Foundation