Intel TDX Demystified: A Top-Down Approach-Reference-Cited by-同舟云学术

Intel TDX Demystified: A Top-Down Approach

Published:2024-04-25 Issue:9 Volume:56 Page:1-33
ISSN:0360-0300
Container-title:ACM Computing Surveys
language:en
Short-container-title:ACM Comput. Surv.

Author:

Cheng Pau-Chen¹^ORCID,Ozga Wojciech²^ORCID,Valdez Enriquillo¹^ORCID,Ahmed Salman¹^ORCID,Gu Zhongshu¹^ORCID,Jamjoom Hani¹^ORCID,Franke Hubertus¹^ORCID,Bottomley James¹^ORCID

Affiliation:

1. IBM Research, Yorktown Heights, NY, USA

2. IBM Research Europe, Zurich, Switzerland

Abstract

Intel Trust Domain Extensions (TDX) is an architectural extension in the 4th Generation Intel Xeon Scalable Processor that supports confidential computing. TDX allows the deployment of virtual machines in the Secure-Arbitration Mode (SEAM) with encrypted CPU state and memory, integrity protection, and remote attestation. TDX aims at enforcing hardware-assisted isolation for virtual machines and minimize the attack surface exposed to host platforms, which are considered to be untrustworthy or adversarial in the confidential computing’s new threat model. TDX can be leveraged by regulated industries or sensitive data holders to outsource their computations and data with end-to-end protection in public cloud infrastructures. This article aims at providing a comprehensive understanding of TDX to potential adopters, domain experts, and security researchers looking to leverage the technology for their own purposes. We adopt a top-down approach, starting with high-level security principles and moving to low-level technical details of TDX. Our analysis is based on publicly available documentation and source code, offering insights from security researchers outside of Intel.

Publisher

Association for Computing Machinery (ACM)

Link

https://dl.acm.org/doi/pdf/10.1145/3652597

Reference71 articles.

1. 2018. CVE-2017-5753. Retrieved March 29 2024 from https://nvd.nist.gov/vuln/detail/CVE-2017-5753

2. 2018. CVE-2017-5754. Retrieved March 29 2024 from https://nvd.nist.gov/vuln/detail/CVE-2017-5754

3. Strengthening VM isolation with integrity protection and more;AMD,2020

4. Sergei Arnautov, Bohdan Trach, Franz Gregor, Thomas Knauth, Andre Martin, Christian Priebe, Joshua Lind, Divya Muthukumaran, Dan O’Keeffe, Mark L. Stillwell, David Goltzsche, Dave Eyers, Rüdiger Kapitza, Peter Pietzuch, and Christof Fetzer. 2016. Scone: Secure linux containers with intel sgx. In Proceedings of the OSDI. 689–703.

5. Enrico Barberis, Pietro Frigo, Marius Muench, Herbert Bos, and Cristiano Giuffrida. 2022. Branch history injection: On the effectiveness of hardware mitigations against \(\lbrace\) cross-privilege \(\rbrace\) spectre-v2 attacks. In Proceedings of the 31st USENIX Security Symposium (USENIX Security 22). 971–988.

Cited by 10 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Elevating Security in Migration: An Enhanced Trusted Execution Environment-Based Generic Virtual Remote Attestation Scheme;Information;2024-08-07

2. BarriCCAde: Isolating Closed-Source Drivers with ARM CCA;2024 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW);2024-07-08

3. Conditional Network Availability: Enhancing Connectivity Guarantees for TEE-Based Services;2024 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW);2024-07-08

4. Memory Tagging using Cryptographic Integrity on Commodity x86 CPUs;2024 IEEE 9th European Symposium on Security and Privacy (EuroS&P);2024-07-08

5. Securing AI Inference in the Cloud: Is CPU-GPU Confidential Computing Ready?;2024 IEEE 17th International Conference on Cloud Computing (CLOUD);2024-07-07