August 19-20 | San Diego, CA
View More Details  & Register Here
Back To Schedule
Monday, August 19 • 14:35 - 15:15
Protected Execution Facility On Power - Guerney Hunt, Ram Pai & Michael Anderson, IBM*

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
IBM POWER9 architecture introduces  Protected Execution Facility (PEF) which enables secure memory, which can only be accessed when the processor is in a new higher privileged mode called Ultravisor mode.  Some facilities that were previously hypervisor privileged are now ultravisor privileged. This talk presents architectural changes for PEF,  the Protected Execution Ultravisor, and new services called ultra calls.  Combined with enhancements to the Virtual Machine format a new class of VMs called Secure Virtual Machines (SVM) is enabled.  SVMs utilize hypervisor services and run in secure memory under the control of the Ultravisor.  SVMs are protected from attacks from the Hypervisor, other privileged software entities, and privileged users on the system.  POWER9 systems can concurrently support both normal VMs and SVMs. All firmware and tools for PEF will be Open Sourced.

avatar for Guerney Hunt

Guerney Hunt

Research Staff Member, IBM
Dr. Guerney D. H. Hunt has been a Research Staff Member at IBM’s T. J. Watson Research Center since 1995. He is currently working on transferring security technology into IBM products, and developing additional security technology. He participated in a team funded by the Department... Read More →

Ram Pai

Senior Software Engineer, IBM
Ram Pai leads the development of the Secure Virtual Machines at IBM's Cognitive Systems Group.He has enabled large teams globally towards enablement of various contributions to the Linux ecosystem.Among many other features, VFS Shared-Subtree and POWER memory-key features are some... Read More →

Michael Anderson

Senior Software Engineer, IBM
Mike Anderson is a developer in IBM's Cognitive Systems Group.He is currently working on Ultravisor firmware. This work provides support for secure virtual machines (SVMs) on IBM Open Power Systems supporting Protected Execution Facility (PEF) capability.He is an open source developer... Read More →

Monday August 19, 2019 14:35 - 15:15 PDT
Harbor Ballroom E (Track 2)
  Cloud  Security
  • Session Slides Included YES