Introduction

Source code can be found here. References are at the bottom of the page.

Currently, my main research focus is on writing a RISC-V CoVE 1 compliant firmware. I will not go in detail here, but I will just introduce the topic. Major CPU manufacturers (Intel, ARM, AMD, NVIDIA, ecc) are proposing hardware-supported Trusted Execution Environment (TEE) (which is a fancy way to say “very strong isolation including cryptography in-memory and anti-tamper supported by attestation services”). Recent trends (like Intel TDX, ARM CCA, AMD SEV) propose the creation of Virtual Machine based TEE. So we are not just isolating processes, but entire operating systems. RISC-V proposed CoVE (Confidential Virtual Extension) and so here I am trying to implementing it.