top | item 27940945

(no title)

Dumping VM memory contents is pretty trivial.

discuss

AMD's SEV and Intel's SGX should protect from this. Of course, you still have to take the VPS provider's word that they've enabled them on their CPUs.

gruez|4 years ago

...which is approximately zero VPS providers. I haven't seen them advertised outside of specialty azure/aws instance types.

d110af5ccf|4 years ago

> you still have to take the VPS provider's word that they've enabled them

No, you don't. Both of those implementations provide hardware attestation via vendor keys securely embedded in the CPU. I have no idea if any providers currently make such features available though.

closeparen|4 years ago

That is for applications specifically written to compute on the secure element, no?

unknown|4 years ago

[deleted]