Skip to content
Permalink
Branch: master
Find file Copy path
Find file Copy path
Fetching contributors…
Cannot retrieve contributors at this time
29 lines (28 sloc) 1.59 KB
amazon_s3_presentation_url amazon_s3_video_url author categories comments date image layout session_id session_track slideshare_presentation_url speakers title youtube_video_url tag
connect
yvr18
true
2018-09-16 09:00:00+00:00
featured file_name path
true
YVR18-421.png
/assets/images/featured-images/YVR18-421.png
resource-post
YVR18-421
Security, Data Center
None
biography company job-title name speaker-image
"Work on software development for Arm's SGI platforms. Would be interested to hear and discuss about Arm in enterprise."
Arm
Principal Engineer
Thomas Abraham
ThomasAbraham.gif
YVR18-421: Enabling a secure data center with Arm64 architecture
session

Secure boot helps to plug security vulnerabilities for servers in the data center. The primary requirement to implement secure boot using UEFI is the support for secure storage on the server platform. Existing support for secure storage in implementations of UEFI such as EDK2 are x86 specific relying on the x86 SMM operating mode to provide a hardware enforced sandbox execution environment. AArch64 based platforms rely on S-EL0/1 to provide such a sandbox execution environment to implement secure storage but the upstream EDK2 support for secure storage requires design changes to extend it for AArch64 platforms. This proposal presents those design changes with detailed information of the proposed changes.

You can’t perform that action at this time.