Azure Confidential Computing Blog articles

Azure Confidential Computing Blog articles

https://techcommunity.microsoft.com/t5/azure-confidential-computing/bg-p/AzureConfidentialComputingBlog

Azure Confidential Computing Blog articles

Announcing general availability of guest attestation for confidential VMs

Published

Announcing general availability of guest attestation for confidential VMs

Establishing that the underlying cloud infrastructure or a cloud service is in a desired good state is paramount in a confidential computing environment. Minimally, a desired good state is one where the underlying trusted execution environment provides memory and integrity protection. Without an established good state, relying services cannot ensure that confidential computing promises are met and risk negatively impacting their security posture.

Attestation is a key function in the confidential computing ecosystem. Attestation enables verifying trustworthiness (good state) of trusted execution environment. Today, we are excited to announce the general availability of guest attestation for confidential VMs, a new feature that provides customers a means to perform remote attestation to establish trustworthiness of a confidential VM.

 

Confidence in confidential computing environment

With guest attestation, a relying party can have increased confidence that their software inside a confidential VM that is in a desired good state – memory encryption and integrity security features in confidential hardware platform (e.g.: AMD 3rd Gen EPYC CPUs with SEV-SNP), including secure boot, virtual TPM, etc.

 

Some of the common customer scenarios for guest attestation are:

  • Ensure a Confidential VM is running on a trusted execution environment with memory encryption and integrity confidential hardware platform (currently AMD only) before launching a sensitive workload. This is a basic use of guest attestation.
  • Ensure a Confidential VM in a desired good state with properties such as secure boot enabled (protects against rootkits – firmware, bootloader, kernel malware), vTPM, and other claims before launching a sensitive workload.
  • Ensure that a relying party is presented evidence that a Confidential VM is running on a confidential hardware platform and in a good state to engage with for making sensitive transactions.

 

renukaprasad_0-1665362260060.png

 

The first scenario is described in this diagram above. Attestation requests are performed by a standalone TEE (Trusted Execution Environment) checker program to determine if the confidential VM is running on trusted execution environment before a workload is launched. To perform attestation, the TEE checker program integrates with the guest attestation library and runs inside a confidential VM. Upon making a request to the attestation library, the TEE checker parses for claims in the JWT (JSON Web Token) response to determine if the VM is a CVM (confidential Virtual Machine) and running AMD SEV-SNP hardware and then launches the sensitive HR (Human Resources) workload.

Guest attestation feature is available as an executable program that can be incorporated in a deployment script and as a library for direct integration inside another program. The above scenarios can be realized using either method. Guest attestation is supported on Windows and Linux OS.

 

Insights into CVM health with Microsoft Defender for Cloud

Guest attestation is integrated with Microsoft Defender for Cloud (MDC). MDC ensures that your VMs are properly configured by issuing relevant recommendations, and once VMs are properly setup, MDC can detect and alert of any VM health issues.

  • Recommendation to enable secure boot
  • Recommendation to install guest attestation extension
  • Attestation health assessment or boot integrity monitoring
  • Alert for VM attestation failure

 

renukaprasad_1-1665362260075.png

 

Note that the guest attestation extension for confidential VMs is required for recommendations and alerts in MDC.

 

Watch the demo video on guest attestation.

 

 

 

Guest attestation is available in all Azure public cloud regions where confidential VMs are available. To learn more and get started with guest attestation, and related ACC offerings, visit the following resources:

 

If you would like to engage further with the ACC team, please contact us at Azure confidential computing PMs

 

 

Continue to website...

More from Azure Confidential Computing Blog articles

General Availability: Azure Managed HSM Backup/Restore when Storage is Behind a Private Endpoint

General Availability: Azure Managed HSM Backup/Res ...

3m

Public Preview: Azure Managed HSM Backup/Restore when Storage Account is Behind a Private Endpoint

Public Preview: Azure Managed HSM Backup/Restore w ...

4m

General Availability: Managed HSM Networking Settings in Azure Portal

General Availability: Managed HSM Networking Setti ...

4m

New innovations in confidential computing from Azure at Ignite 2023

New innovations in confidential computing from Azu ...

5m

Announcing Azure confidential VMs with NVIDIA H100 Tensor Core GPUs in Preview

Announcing Azure confidential VMs with NVIDIA H100 ...

5m

Announcing the public preview of Azure confidential VMs with Intel TDX

Announcing the public preview of Azure confidentia ...

5m

Announcing: Microsoft moves $25 Billion in credit card transactions to Azure confidential computing

Announcing: Microsoft moves $25 Billion in credit ...

5m

What’s new: RHEL 9.3 support for AMD confidential VMs, temp disk encryption, new regions

What’s new: RHEL 9.3 support for AMD confidential ...

5m

O'Reilly Media report: Azure Confidential Computing and Zero Trust

O'Reilly Media report: Azure Confidential Computin ...

5m

Protecting Azure customers with the power of Azure confidential ledger

Protecting Azure customers with the power of Azure ...

5m

Related Posts