Articles & Reviews
News Archive
Forums
Premium
Contact
Categories

Computers Display Drivers Graphics Cards Linux Gaming Memory Motherboards Processors Software Storage Operating Systems Peripherals

Intel Developing Rust-Based TD-Shim Firmware For Confidential Containers

Written by Michael Larabel in Intel on 7 February 2023 at 03:00 AM EST. 1 Comment

INTEL

Among the many interesting talks this past weekend at the 2023 edition of FOSDEM was Intel engineer Jiewen Yao presenting TD-Shim as the company's work on a lightweight virtual firmware for containers that complies with their approach to confidential computing.

Intel's TD-Shim is designed a lightweight virtual firmware implementation for confidential containers with the likes of Kubernetes. TD-Shim is designed with security and confidential computing needs in mind while also being as fast to boot as possible.

TD-Shim aims to replace the traditional Open Virtual Machine Firmware and is also designed to be used with Trust Domain Extensions (TDX) introduced with their latest generation Xeon Scalable "Sapphire Rapids" processors.

Of interest to many Phoronix readers is the fact that TD-Shim is yet another new open-source Intel project making use of the Rust programming language. TD-Shim has been tested so far with hypervisors like KVM and the Intel-led Cloud Hypervisor project.

Intel TD-Shim FOSDEM 2023 slide

Those interested in learning more about TD-Shim for Intel confidential containers can see this slide deck (PDF) from FOSDEM 2023. The open-source TD-Shim firmware is hosted on GitHub.

1 Comment

Related News

Intel Looking To Raise SPIR-V Backend To Becoming An Official LLVM Target

Intel Panther Lake & Clearwater Forest Power Management Patches For Linux 6.14

Intel Begins Readying Graphics Driver Changes For The Linux 6.14 Kernel

UMD Direct Submission "Proof Of Concept" For The Intel Xe Linux Driver

Intel Linux Display Driver Being Adapted For DRM Panic "Blue Screen of Death" Support

Intel Compute Runtime 24.45.31740.9 Released Ahead Of The Arc B580 "Battlemage" Launch

About The Author

Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week

OpenWrt Affected By Security Issue That Could Have Led To Compromised Build Artifacts

Linus Torvalds Comes Out Against "Completely Broken" x86_64 Feature Levels

How AMD Is Taking Standard C/C++ Code To Run Directly On GPUs

Linux EFI Zboot Abandoning "Compression Library Museum", Focusing On Gzip & Zstd

Ptyxis Becomes Ubuntu's Recommended Replacement To GNOME Terminal

COSMIC Alpha 4 Released For System76's Rust-Based Desktop

GNU Shepherd 1.0 Service Manager Released As "Solid Tool" Alternative To systemd

KDE Starts December By Landing A Number Of New Features