(All opinions expressed in that talk are my own)

RT @orange_8361: The detailed version of our #WorstFit attack is available now! 🔥 Check it out! 👉 cc: @_splitline_

I just merged the 1000th commit into 🚀

@ffidencio @DKBarbarian i can't :///

@LucGamesHD Happy Birthday!

@GabrielKerneis @blitzclone Contrast by @EdgelessSystems (built with Kata Containers) works like that. The launch measurements for the firmware and kernel+initrd+cmdline are calculated ahead of time. The kernel command line contains arguments to mount a dm-verity protected disk. Everything's attested :)

@GabrielKerneis @blitzclone I think most people just don't use vTPMs when full attestation is available. If you really want a vTPM, something like COCONUT SVSM or OpenHCL could be used in the future to provide a trusted TPM. More details on the preview:

@blitzclone @GabrielKerneis I mean kinda? It doesn't feel like that for the L2 VM as it's not even aware that it's running as a nested VM, but I certainly see the similarities as well.

@blitzclone @GabrielKerneis Kata Containers (the tech used in this particular preview) uses a fairly minimal kernel config and boot image to cut down on attack surfaces exposed by the guest running inside the confidential L2 VM (It probably could be a bit smaller, though).

@GabrielKerneis @blitzclone In the preview (so likely not plain Azure VMs), the L1 VMs can send requests to the PSP, so CloudHypervisor running on the L1 VM will forward any requests from the L2 VM to the PSP and back:

@npmccallum @SEJeff @_msw_ Azure's confidential containers preview uses Kata Containers with CloudHypervisor to spawn confidential L2 VMs on top of the regular non-confidential Kuberenetes VMs:

@blitzclone Nested VMs on Azure allow supplying the firmware and doing full attestation.

@SwiftOnSecurity The latest episode of controlled pod into terrain discusses some of the interactions between WiFi and TDWR (terminal doppler weather radar) and how to prevent them

@drivsholm @awesomekling I had the same experience. I don't think it really shaped me in any way.

@npmccallum I sent you a direct message.

@blitzclone @draskodraskovic @enarxproject @ElasticProject_ @KubeCon_ Is it, though? I have never heard an Intel employee say that, and it's not like SGX has been dead ever since it's been deprecated on client CPUs. They added new features not that long ago. As of today, TDX attestation requires SGX, so until they add other options, SGX can't leave