On 09/14/2016 03:38 PM, Paolo Bonzini wrote:
On 14/09/2016 22:29, Brijesh Singh wrote:
Does the guest have to check the measured data (e.g. with a hash) too,
to check that it hasn't been tampered with outside the secure
processor's control? Of course this would result in garbage written to
the modified page, but that might be a valid attack vector.
Guest does not need to check the measurement.
Can you explain why not?
Paolo, this is good question, I will check this internally and come back
to you.
Paolo
