Under the dedicated efforts of the open-source community, AMD SEV-SNP’s confidential computing solution has now reached a state of technical maturity. This talk will approach the topic from the perspective of OVMF, explaining how it works in conjunction with QEMU and the Linux kernel to enable memory encryption and enhance memory security in virtualized environments.
This session is not limited to UEFI developers; it is also suitable for those interested in virtualization, Linux kernel development, or cybersecurity. In this talk, participants will learn how AMD SEV-SNP protects virtual machines in confidential computing and understand the potential risks it introduces at the firmware level.