Virtual Firmware for Intel Trust Domain Extensions

Virtual Firmware for Intel Trust Domain Extensions

Intel® Trust Domain Extensions (Intel® TDX) introduce architectural elements to help deploy hardware-isolated, virtual machines (VMs) called trust domains (TDs). Intel TDX is designed to isolate VMs from the virtual-machine manager (VMM)/hypervisor and any other non-TD software on the platform to protect TDs from a broad range of software.

This presentation introduces the architecture for TDX Virtual Firmware (TDVF), and the firmware reference implementation available in open source. The talk covers how TDVF runs from the TD reset vector, records runtime measurements, manages private memory, interacts with the Intel TDX module in Secure Arbitration Mode (SEAM), and loads the operating system (OS).

Learn more about the UEFI Forum:
Presentation slides:

Follow the UEFI Forum

1 Comment

  1. Constantin Faer on November 9, 2021 at 11:35 am

    I watch all your videos and I really like them, the only thing is the sound)