alt Hacker Newsbut is it possible to verify that the cloud provider has applied the update?
Replies
wmf • today at 4:16 AM
The SEV-SNP attestation includes the microcode version. https://www.amd.com/content/dam/amd/en/documents/developer/l...
but is it possible to verify that the cloud provider has applied the update?
The SEV-SNP attestation includes the microcode version. https://www.amd.com/content/dam/amd/en/documents/developer/l...
Yes, it is. You do have to have some infrastructure you trust somewhere to validate an attestation report from the confidential VM.