Intel E5-4600 manual Security Technologies, Intel Virtualization Technology Processor Extensions

Technologies

—Support for fault collapsing based on Requester ID

•Support for both leaf and non-leaf caching

•Support for boot protection of default page table

—Support for non-caching of invalid page table entries

•Support for hardware based flushing of translated but pending writes and pending reads upon IOTLB invalidation.

•Support for page-selective IOTLB invalidation.

•Support for ARI (Alternative Requester ID - a PCI SIG ECR for increasing the function number count in a PCIe* device) to support IOV devices.

•Improved invalidation architecture

•End point caching support (ATS)

•Interrupt remapping

3.1.4Intel Virtualization Technology Processor Extensions

The processor supports the following Intel VT Processor Extensions features:

•Large Intel VT-d Pages

—Adds 2 MB and 1 GB page sizes to Intel VT-d implementations

—Matches current support for Extended Page Tables (EPT)

—Ability to share CPU's EPT page-table (with super-pages) with Intel VT-d

—Benefits:

•Less memory foot-print for I/O page-tables when using super-pages

•Potential for improved performance - Due to shorter page-walks, allows hardware optimization for IOTLB

•Transition latency reductions expected to improve virtualization performance without the need for VMM enabling. This reduces the VMM overheads further and increase virtualization performance.

3.2Security Technologies

3.2.1Intel® Trusted Execution Technology

Intel® Trusted Execution Technology (Intel® TXT) defines platform-level enhancements that provide the building blocks for creating trusted platforms.

The Intel TXT platform helps to provide the authenticity of the controlling environment such that those wishing to rely on the platform can make an appropriate trust decision. The Intel TXT platform determines the identity of the controlling environment by accurately measuring and verifying the controlling software.

Another aspect of the trust decision is the ability of the platform to resist attempts to change the controlling environment. The Intel TXT platform will resist attempts by software processes to change the controlling environment or bypass the bounds set by the controlling environment.

Intel TXT is a set of extensions designed to provide a measured and controlled launch of system software that will then establish a protected environment for itself and any additional software that it may execute.