Overview
Explore the complexities of confidential attestation in this 41-minute conference talk by IBM experts Tobin Feldman-FItzthum and Dov Murik. Delve into the overloaded concept of attestation amidst the rise of confidential computing technologies. Compare and contrast the properties and flows of SEV-ES, SEV-SNP, and Intel TDX attestations with traditional techniques. Examine strategies for reconciling differences and unifying confidential attestation, including the implementation of secure vTPMs backed by hardware root of trust. Investigate the Confidential Containers Attestation Agent as an alternative approach for unified attestation. Analyze related proposals from the Libvirt community and draw conclusions on the most sensible areas for standardization in this Linux Foundation presentation.
Syllabus
Unifying Confidential Attestation - Tobin Feldman-FItzthum & Dov Murik, IBM
Taught by
Linux Foundation