AMD x86 Memory Encryption Technologies – David Kaplan, AMD
This presentation will introduce the audience to two new x86 security technologies developed by AMD which utilize new memory encryption hardware to provide new security enhancements. The first feature, Secure Memory Encryption (SME), is designed to protect systems from physical access attacks by encrypting some or all system memory. The second feature, Secure Encrypted Virtualization (SEV) enables the ability to run encrypted virtual machines isolated from the hypervisor. This presentation will include a technical overview of these features, including ISA changes, security benefits, the key management framework, and Linux enablement.
About David Kaplan
David is a hardware security architect at AMD who focuses on developing new security technologies across the AMD product line as part of the Security Architecture Research and Development center. He is the lead architect for the AMD memory encryption features and has worked on both CPU and SOC level security features for the last 4 years. David has almost 10 years of experience at AMD with a background in x86 CPU development. He has filed over 30 patents in his career so far, and spoken at events such as 32C3.