Enhancing Homelab Security: Leveraging Confidential Computing and DRTM for Intranet-Only Workloads
Marek Marczykowski-Górecki, Michał Kowalczyk, Patrick Schleizer, Piotr Król, Daniel P. Smith
What can we get with modern x86 clients, workstations, and server CPUs? Is there any hope in non-x86 confidential computing now?
This discussion panel aims to shift the focus to local environments, particularly homelabs and workstations that operate intranet-only services without external access. Remote VM-to-VM attacks and VM escapes are out of scope. We will explore the practical applications and benefits of Confidential Computing features such as SEV (Secure Encrypted Virtualization), TSME (Transparent Secure Memory Encryption), TME (Total Memory Encryption), TME-MK (TME with Memory Keys), SGX (Software Guard Extensions), and TDX (Trust Domain Extensions).
Dasharo Developers vPub 0xD Main Track
Dasharo vPub