September 14-15, 2017 - Los Angeles, CA
Click Here For Information & Registration
Back To Schedule
Friday, September 15 • 9:45am - 10:30am
Running Linux in a Shielded VM - Michael Kelley, Microsoft

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
As enterprise server workloads move from physical hardware to virtual machines, the data they contain is at greater risk of being misused or stolen. Sysadmins, or outside attackers who gain access to the hypervisor, can easily copy virtual disks for offline cracking or glean secrets from the memory allocated to the VM, even if they have no access to the VM itself. To provide greater protection for the data in VMs, Microsoft’s Hyper-V hypervisor introduces “shielded VMs”. Shielded VMs have a range of protections that make it much harder for attackers or insiders to access data inside the VM. In this presentation, Michael Kelley will describe shielded VMs and work Microsoft has done with Linux to make it run in a shielded VM. This work includes the changes made to the Linux boot path, the use of dm-crypt, and the creation of templates from which multiple Linux shielded VMs can be deployed.

avatar for Michael Kelley

Michael Kelley

Principal PM Manager, Microsoft
Michael Kelley is a Principal Software Engineer in Microsoft’s Enterprise Open Source Group, working on Linux in Hyper-V, the Azure public cloud, and Azure Stack. He is currently working on Linux on ARM64 hardware and on Linux running in a Hyper-V Shielded VM. Michael has been a... Read More →

Friday September 15, 2017 9:45am - 10:30am PDT
Gold 4