Intel SGX with Enclave Dynamic Memory Management (EDMM) compatiblity with ESXi and VM
search cancel

Intel SGX with Enclave Dynamic Memory Management (EDMM) compatiblity with ESXi and VM

book

Article ID: 401846

calendar_today

Updated On:

Products

VMware vSphere ESXi

Issue/Introduction

Enabling Intel SGX with Enclave Dynamic Memory Management (EDMM) works on the ESXi but not on the VM.

Is using the same SGX Enclave in containers within a VM supported or not.

Environment

VMware vSphere ESXi 8.x

Resolution

vSGX can be configured to use one of the enclave public key hashes set in the physical SGX, or it can be configured with one manually entered key hash (see: Securing Virtual Machines with Intel Software Guard Extensions)

To use more different enclaves one VM, a feature request will need to be submitted for this (Submit a VMware feature request).

Additional Information

Powered by Wolken Software