As part of work done at IBM Research on Confidential Computing (specifically
with AMD SEV), I participated in two talks presented in KVM Forum 2021.
The first one deals with securing the boot process of memory-encrypted Linux
VMs. It describes changes we contirbuted to OVMF and QEMU.
In the talk I mention that the
are still under review, but since then they have been merged and will be
available starting from QEMU 6.2.
The second talk describes the challenges of live migration in SEV and SEV-ES
guests and our attempts to tackle them. This is still work-in-progress.