SoK: Confidential Quartet - Comparison of Platforms for Virtualization-Based Confidential Computing
Guanciale, Roberto ; Paladi, Nicolae LU
and Vahidi, Arash
(2022)
2022 IEEE International Symposium on Secure and Private Execution Environment Design
p.109-120
- Abstract
- Confidential computing allows processing sensitive workloads in securely isolated spaces. Following earlier adop- tion of process-based approaches to isolation, vendors are now enabling hardware and firmware support for virtualization-based confidential computing on several server platforms. Due to variations in the technology stack, threat model, implemen-tation and functionality, the available solutions offer somewhat different capabilities, trade-offs and security guarantees. In this paper we review, compare and contextualize four virtualization-based confidential computing technologies for enterprise server platforms - AMD SEV, ARM CCA, IBM PEF and Intel TDX.
Please use this url to cite or link to this publication:
https://lup.lub.lu.se/record/9c2c919b-ea57-4e06-9480-55f137327c24
- author
- Guanciale, Roberto
; Paladi, Nicolae
LU
and Vahidi, Arash
- organization
- publishing date
- 2022-11-04
- type
- Chapter in Book/Report/Conference proceeding
- publication status
- published
- subject
- keywords
- Confidential Computing
- host publication
- Proceedings of the 2022 IEEE International Symposium on Secure and Private Execution Environment Design (SEED'22)
- pages
- 109 - 120
- publisher
- IEEE - Institute of Electrical and Electronics Engineers Inc.
- conference name
- 2022 IEEE International Symposium on Secure and Private Execution Environment Design
- conference dates
- 2022-09-26 - 2022-09-27
- external identifiers
-
- scopus:85143079315
- ISBN
- 978-1-6654-8527-2
- 978-1-6654-8526-5
- DOI
- 10.1109/SEED55351.2022.00017
- project
- Säkra mjukvaruuppdateringar för den smarta staden
- language
- English
- LU publication?
- yes
- id
- 9c2c919b-ea57-4e06-9480-55f137327c24
- date added to LUP
- 2022-09-15 15:02:09
- date last changed
- 2025-04-19 01:26:32
@inproceedings{9c2c919b-ea57-4e06-9480-55f137327c24,
abstract = {{Confidential computing allows processing sensitive workloads in securely isolated spaces. Following earlier adop- tion of process-based approaches to isolation, vendors are now enabling hardware and firmware support for virtualization-based confidential computing on several server platforms. Due to variations in the technology stack, threat model, implemen-tation and functionality, the available solutions offer somewhat different capabilities, trade-offs and security guarantees. In this paper we review, compare and contextualize four virtualization-based confidential computing technologies for enterprise server platforms - AMD SEV, ARM CCA, IBM PEF and Intel TDX.}},
author = {{Guanciale, Roberto and Paladi, Nicolae and Vahidi, Arash}},
booktitle = {{Proceedings of the 2022 IEEE International Symposium on Secure and Private Execution Environment Design (SEED'22)}},
isbn = {{978-1-6654-8527-2}},
keywords = {{Confidential Computing}},
language = {{eng}},
month = {{11}},
pages = {{109--120}},
publisher = {{IEEE - Institute of Electrical and Electronics Engineers Inc.}},
title = {{SoK: Confidential Quartet - Comparison of Platforms for Virtualization-Based Confidential Computing}},
url = {{https://lup.lub.lu.se/search/files/124058517/SoK_confidential_quartet.pdf}},
doi = {{10.1109/SEED55351.2022.00017}},
year = {{2022}},
}