Intel CM8062101038606, E5-1600, E5-2600, E5-4600 3.2 Security Technologies

Intel® Xeon® Processor E5-1600/E5-2600/E5-4600 Product Families 81

Datasheet Volume One

Technologies

— Support for fault collapsing based on Requester ID

• Support for both leaf and non-leaf caching

• Support for boot protection of default page t able

— Support for non-caching of invalid page table entries

• Support for hardware based flushing of translated but pending writes and pending

reads upon IOTLB invalidation.

• Support for page-selective IOTLB invalidation.

• Support for ARI (Alternative Requester ID - a PCI SIG ECR for increasing the

function number count in a PCIe* device) to support IOV devices.

• Improved invalidation architecture

• End point caching support (ATS)

• Interrupt remapping

The processor supports the following Intel VT Processor Extensions features:

• Large Intel VT-d Pages

— Adds 2 MB and 1 GB page sizes to Intel VT-d implementations

— Matches current support for Extended Page Tables (EPT)

— Ability to share CPU's EPT page-table (with super-pages) with Intel VT-d

— Benefits:

• Less memory foot-print for I/O page-tables when using super-pages

• Potential for improved performance - Due to shorter page-walks, allows

hardware optimization for IOTLB

• Transition latency reductions expected to improve virtualization performance

without the need for VMM enabling. This reduces the VMM overheads further and

increase virtualization performance.

3.2 Security Technologies

Intel® Trusted Execution Technology (Intel® TXT) defines platform-level

enhancements that provide the building blocks for creating trusted platforms.

The Intel TXT platform helps to provide the authenticity of the controlling environment

such that those wishing to rely on the platform can make an appropriate trust decision.

The Intel TXT platform determines the identity of the controlling environment by

accurately measuring and verifying the controlling software.

Another aspect of the trust decision is the ability of the platform to resist attempts to

change the controlling environment. The Intel TXT platform will resist attempts by

software processes to change the controlling environment or bypass the bounds set by

the controlling environment.

Intel TXT is a set of extensions designed to provide a measured and controlled launch

of system software that will then establish a protected environment for itself and any

additional software that it may execute.