Speaker
Description
The configfs-tsm proposal arose from the observation that there are several platform vendors all building similar confidential-computing functionality features into their products. It makes the assertion that the kernel has a role to play and a vested interest in aligning stakeholders behind common ABI. Going forward attestation reports are just one example of shared interfaces that the community can build to lower, or better distribute, the long term maintenance burden of confidential computing for the kernel. Another example area of collaboration is userspace ABIs for QEMU to use for managing secure device assignment to confidential VMs. Lets have an open discussion on assertions made in the configfs-tsm proposal and the future implications.
