Wednesday, June 20 • 11:45 - 12:15
EPT-Based Sub-page Write Protection On Xenc - Yi Zhang, Intel

Sign up or log in to save this to your schedule and see who's attending!

EPT-Based Sub-page Write Protection referred to as SPP, it is a capability which allow Virtual Machine Monitors(VMM) to specify write-permission for guest physical memory at a sub-page(128 byte) granularity. When this capability is utilized, the CPU enforces write-access permissions for sub-page regions of 4K pages as specified by the VMM. EPT-based sub-page permissions is intended to enable fine-grained memory write enforcement by a VMM for security(guest OS monitoring) and usages such as device virtualization and memory check-point.


Yi Zhang

Sr. Software Engineer, Intel
Working in intel OTC Hypervisor Team.

Wednesday June 20, 2018 11:45 - 12:15
Jiangning, Level 2

Attendees (2)