CPC G06F 21/44 (2013.01) [G06F 9/3016 (2013.01)] | 19 Claims |
1. An apparatus comprising:
a processor; and
at least one non-transitory machine-readable storage medium storing a virtual machine manager executable by the processor to:
launch a trust domain, wherein software is to be run in the trust domain;
load a trust domain module associated with the trust domain, wherein the trust domain module is to:
record contents and configuration of the trust domain during the launch of the trust domain; and
generate a trust domain report structure of the trust domain, wherein the trust domain report structure comprises:
measurements of the trust domain;
measurements from the processor; and
a data integrity code generated from a key accessible only to the processor;
send, from the virtual machine manager, a request to a quoting enclave to convert the trust domain report structure into a signed quote, wherein the request comprises the trust domain report structure.
|