- May 7, 2002
- 10,371
- 762
- 126
I find this rather interesting, Epyc supports digital encryption in a big way.
All the way down the line, it seems you can't run things unless you allow it.
Each VM instance can be sanitized from everything else, then the software in that VM can also be made to not run unless it is digitally signed, and less than a 1% performance hit as well.
I am wondering how this will end up working with open source & linux / BSD?
Is there somehow going to be some digitally signed versions of everything kept someplace?
Is it the Admin's job to "generate" a digital fingerprint for everything being run on the system?
No more running "non-production" code on the production system either.
All the way down the line, it seems you can't run things unless you allow it.
Each VM instance can be sanitized from everything else, then the software in that VM can also be made to not run unless it is digitally signed, and less than a 1% performance hit as well.
I am wondering how this will end up working with open source & linux / BSD?
Is there somehow going to be some digitally signed versions of everything kept someplace?
Is it the Admin's job to "generate" a digital fingerprint for everything being run on the system?
No more running "non-production" code on the production system either.
Facebook
Twitter