Containerize all the things! Arm v9 takes security seriously

by
Jim Salter
from Ars Technica - All content on (#5G0EV)
arm-2-hero-image-800x410.jpg

Enlarge / There are two types of reactions to this marketing image: "ooh, shiny!" and "oh god no, all that particulate will get in the socket..." (credit: Arm)

On Tuesday afternoon, Arm held a Vision Day event at which it teased details about its upcoming Arm v9 architecture.

The short version: expect a massively altered security landscape, along with improvements to vector math (which in turn means improvements in AI/ML and Digital Signal Processing, among other applications).

Confidential Compute Architecture
  • arm-confidential-compute-architecture-98

    If you're hoping for gritty technical detail on how realms actually work, we've got bad news for you-so far, Arm's not telling. [credit: Arm ]

The key concept introduced in Arm v9's new Confidential Compute Architecture is the realm. Realms are containerized, isolated execution environments, completely opaque to both operating system and hypervisor. The hypervisor itself will only be responsible for scheduling and resource allocation. Realms themselves are to be managed by the realm manager-a new concept that can apparently be implemented in 1/10th the code required for a hypervisor.

Read 12 remaining paragraphs | Comments

index?i=x5sw_4XCbr4:-p6eD6fmknE:V_sGLiPB index?i=x5sw_4XCbr4:-p6eD6fmknE:F7zBnMyn index?d=qj6IDK7rITs index?d=yIl2AUoC8zA
External Content
Source RSS or Atom Feed
Feed Location http://feeds.arstechnica.com/arstechnica/index
Feed Title Ars Technica - All content
Feed Link https://arstechnica.com/
Reply 0 comments