Intel and Google published the results of a significant joint security review of Intel Trust Domain Extensions (Intel TDX). The five-month engagement between Intel's INT31 research team and Google Cloud Security focused on hardening Intel TDX Module 1.5, the core software responsible for managing confidential virtual machines. The review identified five vulnerabilities and 35 other weaknesses or areas for improvement. According to Intel, all five vulnerabilities were patched in the latest code version released to partners.

Intel TDX represents a shift in data center security. Unlike traditional virtualization, where the hypervisor has full access to guest data, TDX creates "Trust Domains" (TDs), or hardware-isolated virtual machines. These are cryptographically isolated from the hosting infrastructure using Intel's Secure Arbitration Mode (SEAM). The system relies on the Intel TDX Module, a digitally signed software shim running in SEAM. It enforces security policies that hardware alone cannot handle. Because a compromise of this module could theoretically bypass the system's isolation guarantees, it is a critical verification target.
Read full story

More...