top | item 46649081 (no title) 6r17 | 1 month ago I wonder if openbsd is secure running as a guest ? it it able to isolate it-self sufficiently so that the host cannot mathematically breach it ? (which makes openbsd very suitable for keyholding) discuss order hn newest ikmckenz|1 month ago As of 2025 OpenBSD has support for AMD SEV and SEV-ES, with support for SEV-SNP work-in-progress, so with the right hardware yes it's able to isolate itself sufficiently https://www.bsdcan.org/2025/timetable/timetable-Confidential... muricula|1 month ago The host kernel and probably the host VMM can see guest memory, so I wouldn't use it for that. daneel_w|1 month ago https://www.amd.com/en/developer/sev.html
ikmckenz|1 month ago As of 2025 OpenBSD has support for AMD SEV and SEV-ES, with support for SEV-SNP work-in-progress, so with the right hardware yes it's able to isolate itself sufficiently https://www.bsdcan.org/2025/timetable/timetable-Confidential...
muricula|1 month ago The host kernel and probably the host VMM can see guest memory, so I wouldn't use it for that. daneel_w|1 month ago https://www.amd.com/en/developer/sev.html
ikmckenz|1 month ago
muricula|1 month ago
daneel_w|1 month ago