Explore the intricacies of secure live migration for encrypted virtual machines in this 21-minute conference talk presented by Tobin Feldman-Fitzthum and Dov Murik from IBM at a Linux Foundation event. Delve into the world of confidential computing and learn about SEV (Secure Encrypted Virtualization) live migration techniques. Understand the challenges and solutions related to memory encryption and firmware migration support. Examine the migration handler process and address safety concerns. Discover the specifics of SEV-ES (Encrypted State) and SEV-SNP (Secure Nested Paging) live migration, including the use of trampolines. Conclude by considering open questions in this rapidly evolving field of secure virtualization technology.
Overview
Syllabus
Intro
Confidential Computing
SEV Live Migration
Memory Encryption
Firmware Migration Support
Migration Handler
Is it safe?
SEV-ES Live Migration
Trampoline
SEV-SNP Live Migration
Open Questions
Taught by
Linux Foundation
Tags
Related Courses
-
SEV-SNP Development Status Update - Current Progress and Future Plans
-
Supporting Live Migration of Confidential VMs in KVM
-
AMD SEV-TIO - Trusted I/O for Secure Encrypted Virtualization
-
Remote Attestation in AMD SEV-SNP Confidential VMs
-
Providing Confidential Guest Services with a Secure VM Service Module on AMD
-
AMD SEV-SNP Attestation - Establishing Trust in Guests
