zlacker

[parent] [thread] 2 comments
1. Avaman+(OP)[view] [source] 2023-07-25 14:59:57
That's the point where you'd need the VM itself to be attested for it to work. Hyper-V kinda does it already with Shielded Windows VMs.

With the advent of SEV, you won't even be able to look at the stuff your hypervisor is running.

replies(1): >>fsnipe+t6
2. fsnipe+t6[view] [source] 2023-07-25 15:25:08
>>Avaman+(OP)
Also there is no guarantee that "attestation" won't require your software to run on the physical hardware and not on a vm.
replies(1): >>Avaman+Aa
◧◩
3. Avaman+Aa[view] [source] [discussion] 2023-07-25 15:40:12
>>fsnipe+t6
True, but virtualization is big enough (including Microsoft's own Windows365 offerings) that passing "trust" down into VMs will be done. And with SEV there isn't even a way to tamper with things after the attestation process has been completed.
[go to top]