Re: Integrity in untrusted environments

public inbox for kvm@vger.kernel.org
 help / color / mirror / Atom feed

From: Shiva V <shivaramakrishnan740@gmail.com>
To: kvm@vger.kernel.org
Subject: Re: Integrity in untrusted environments
Date: Thu, 31 Jul 2014 22:19:26 +0000 (UTC)	[thread overview]
Message-ID: <loom.20140801T001808-88@post.gmane.org> (raw)
In-Reply-To: CAL54oT1toV-ugBah6EwC8BAgAyGda0nxc08eJxDq-pR5M54ovw@mail.gmail.com

Nakajima, Jun <jun.nakajima <at> intel.com> writes:

> On Thu, Jul 31, 2014 at 2:25 PM, Shiva V <shivaramakrishnan740 <at> 
gmail.com> wrote:
Hello,
 I am exploring ideas to implement a service inside a virtual machine on
 untrusted hypervisors under current cloud infrastructures.
Particularly, I am interested how one can verify the integrity of the
service in an environment where hypervisor is not trusted. This is my 
setup.

1. I have two virtual machines. (Normal client VM's).
2. VM-A is executing a service and VM-B wants to verify its integrity.
 3. Both are executing on untrusted hypervisor.

 Though, Intel SGX will solve this, by using the concept of enclaves, its 
not
 publicly available yet.

 Just clarification. The concept of enclaves and the specs of Intel SGX
are available in public.

> See the following, for example:
> https://software.intel.com/en-us/intel-isa-extensions

Thanks for the reply. By mentioning Not publicly available, 
I meant that the Intel SGX processors are not available in market yet.

next prev parent reply	other threads:[~2014-07-31 22:19 UTC|newest]

Thread overview: 5+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2014-07-31 21:25 Integrity in untrusted environments Shiva V
2014-07-31 21:40 ` Nakajima, Jun
2014-07-31 22:19   ` Shiva V [this message]
2014-08-01  6:50 ` Paolo Bonzini
2014-08-01 15:43   ` Shiva V

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=loom.20140801T001808-88@post.gmane.org \
    --to=shivaramakrishnan740@gmail.com \
    --cc=kvm@vger.kernel.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox