[I] Request for SEV-SNP Support in CloudStack for Enhanced Virtualization Security [cloudstack]

Thu, 07 Nov 2024 03:40:20 -0800 


sl4sh73r opened a new issue, #9902:
URL: https://github.com/apache/cloudstack/issues/9902

   <!--
   Verify first that your issue/request is not already reported on GitHub.
   Also test if the latest release and main branch are affected too.
   Always add information AFTER of these HTML comments, but no need to delete 
the comments.
   -->
   
   ### ISSUE TYPE
   <!-- Pick one below and delete the rest -->
   - [ ] Bug Report
   - [ ] Improvement Request
   - [ ] Enhancement Request
   - [x] Feature Idea
   - [ ] Documentation Report
   - [ ] Other
   
   ### COMPONENT NAME
   <!-- Categorize the issue, e.g. API, VR, VPN, UI, etc. -->
   Virtualization, Security
   
   ### CLOUDSTACK VERSION
   <!-- New line separated list of affected versions, commit ID for issues on 
main branch. -->
   **4.18.2.4**
   
   
   ### OS / ENVIRONMENT
   <!-- Information about the environment if relevant, N/A otherwise -->
   **Ubuntu 22.04**
   
   ### SUMMARY
   CloudStack does not currently support **SEV-SNP** (Secure Encrypted 
Virtualization - Secure Nested Paging), a critical security feature for 
enhancing the protection of virtualized environments. SEV-SNP is designed to 
secure workloads by preventing hypervisor attacks and ensuring that VM memory 
remains encrypted even from the host.
   
   I would like to know **when SEV-SNP will be supported in CloudStack**, and 
how it can be used once integrated. This feature is especially important for 
those utilizing AMD's SEV technology and seeking to ensure their VMs are as 
secure as possible.
   
   
   ### EXPECTED RESULTS
   - CloudStack should provide support for **SEV-SNP** in an upcoming release, 
allowing users to take advantage of enhanced security for their virtualized 
workloads.
   - Documentation or configuration options detailing how to enable and utilize 
**SEV-SNP** once available.
   
   ### ACTUAL RESULTS
   Currently, there is **no support for SEV-SNP** in CloudStack, which limits 
the ability to fully leverage AMD's SEV capabilities for securing virtualized 
environments.
   
   
   


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: commits-unsubscr...@cloudstack.apache.org.apache.org

For queries about this service, please contact Infrastructure at:
us...@infra.apache.org

Reply via email to