With latest developments in libkrun and our KBS attestation server, reference-kbs; libkrun is now able to offer attested confidential workloads for the AMD SEV, SEV-ES, and SEV-SNP environment. libkrun is the first open source confidential workload platform to be able to do this. In this talk, we will discuss an overview of what confidential workloads are, how libkrun acts as a platform for booting/running confidential workloads, and how libkrun's attestation process is completed. After this discussion, a demo of booting a SEV-SNP encrypted workload will be shown, and the attestation process during boot will be discussed. We will also discuss our next steps in libkrun development such as bringing Intel TDX support.
Create a custom schedule.
Take it with you on mobile.
Get listed in the directory.
