KVM Forum 2025

COCONUT SVSM: From Persistent State to New Trusted Services
2025-09-05 , Room 2

Following last year’s presentation on persistent state in COCONUT SVSM, a platform for delivering secure and trusted services to Confidential Virtual Machines (CVMs), this talk will highlight the progress made in implementing key services such as a stateful vTPM and a UEFI variable store. We’ll also discuss upcoming features under consideration, including a secure console, log buffering, enhanced debugging capabilities, and support for live migration. If you’re interested in these features or have ideas for additional services, we invite you to join the discussion.

Stefano is a Principal Software Engineer at Red Hat. He is the maintainer of Linux's vsock subsystem (AF_VSOCK) and co-maintainer of rust-vmm and COCONUT SVSM. Current projects cover Confidential VMs, virtio devices, storage for VMs.

This speaker also appears in:

I work in Red Hat's Virtualization Team, focusing on confidential virtualization, firmware, and booting.