-
There are many hits for Patents when searching for "Intel TDX", this seems like one of the most recent: Secure Encryption Key Management in Trust Domains - 20200202013. -
The million dollar question is who gets to write and sign and approve "Intel authenticated code modules"
Even if it uses SGX and even if SGX actually works successfully, the threat model for SGX doesn't include conventional side channels like timing attacks, so if it's based on SGX and the SGX concept then it's like SGX - only truly useful for small bits of hand written assembly language.
Leave a comment:
-
I guess it will end up like SGX, which was supposed to be secure but draws by itself more Spectre-related issues than anything else.Leave a comment:
-
Speaking of protection, there seems to be a GRU rootkit hitting Linux in the wild.
Leave a comment:
-
I don't know, but it feels weird to see Intel (and AMD) come out with new instructions to protect various things. It doesn't give much confidence. I feel like what are all these additional instructions good for when it seems the underlying architecture and technology is riddled with holes. I don't know, but I feel many of these things just seems like workarounds or polishing a turd.Leave a comment:
-
One year later they find a vulnerability on TDX and the idea is destroyed.Leave a comment:
-
Intel Details TDX To Better Protect Virtual Machines
Phoronix: Intel Details TDX To Better Protect Virtual Machines
Intel has published a whitepaper on their new TDX "Trust Domain Extensions" technology for better securing virtual machines...
Leave a comment: