Containerize all the things! Arm v9 takes security seriously

There are two types of reactions to this marketing image: "ooh, shiny!" and "oh god no, all that particulate will get in the socket..."

Enlarge / There are two types of reactions to this marketing image: "ooh, shiny!" and "oh god no, all that particulate will get in the socket..." (credit: Arm)

On Tuesday afternoon, Arm held a Vision Day event at which it teased details about its upcoming Arm v9 architecture.

The short version: expect a massively altered security landscape, along with improvements to vector math (which in turn means improvements in AI/ML and Digital Signal Processing, among other applications).

Confidential Compute Architecture

The key concept introduced in Arm v9's new Confidential Compute Architecture is the realm. Realms are containerized, isolated execution environments, completely opaque to both operating system and hypervisor. The hypervisor itself will only be responsible for scheduling and resource allocation. Realms themselves are to be managed by the realm manager—a new concept that can apparently be implemented in 1/10th the code required for a hypervisor.

Read 12 remaining paragraphs | Comments



https://ift.tt/3uaegsx

Comments