Re: [RFC PATCH v1 00/28] x86: Secure Encrypted Virtualization (AMD)

From: Brijesh Singh
Date: Fri Aug 26 2016 - 11:38:45 EST

Next message: Paul Burton: "[PATCH 02/26] MIPS: PCI: Make pcibios_set_cache_line_size an initcall"
Previous message: RafaÅ MiÅecki: "Re: [PATCH V4] leds: trigger: Introduce an USB port trigger"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Is there any production hardware supporting SEV? Which one? We

are interested to do some test.

SEV support is not available in production hardware's. SEV support will be available in future AMD hardware's.

And, generally, I have a question about container protection. In

white paper and also current KVM forum slides, it’s said this feature

can protect containers from each other. If it could, it’s great! But I

am not sure: the containers must be in a sandbox/VM? (that means,

still need a virtualized environment). How about Common containers

running directly on host OS?

SEV is integrated with existing AMD-V technology and can be used to provide additional security of containers when running inside VM.

Next message: Paul Burton: "[PATCH 02/26] MIPS: PCI: Make pcibios_set_cache_line_size an initcall"
Previous message: RafaÅ MiÅecki: "Re: [PATCH V4] leds: trigger: Introduce an USB port trigger"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]