Server Products
Data Center Products including boards, integrated systems, Intel® Xeon® Processors, RAID Storage, and Intel® Xeon® Processors
4995 Discussions

How can I determine whether a given Xeon Processor supports SGX and TDX?

wydx
Beginner
‎09-17-2024 07:49 PM
461 Views
Solved Jump to solution

Hello,

As a student passionate about Trusted Execution Environment (TEE) technologies, particularly TDX and SGX, I'm currently exploring the compatibility of these technologies with specific CPUs. Specifically, I'm wondering about the Intel® Xeon® Gold 5418Y Processor and whether it supports TDX, as some forum discussions have mentioned. However, I'm seeking a definitive method to determine, for any given Xeon Processors, whether it supports TDX and SGX based on specific parameters or features.

Moreover, I'm uncertain whether a single CPU can support both TDX and SGX concurrently. If so, how can I verify this? If not, how can I identify CPUs that support either TDX or SGX? This uncertainty motivates my inquiry.

Thank you in advance for your assistance.

0 Kudos
1 Solution
Ragulan_Intel
Employee
‎12-12-2024 07:09 PM
216 Views
Solved Jump to solution

Hello wydx,


Hope this message finds you well.


As you might be already aware Intel has been at the forefront of hardware-based server security for confidential computing since 2018 with the introduction of Intel® Software Guard Extensions (Intel® SGX) in the Intel® Xeon® E processors, extending into multi-socket processors with the 3rd generation Intel® Xeon® Scalable processors (formerly code-named Ice Lake). With the 4th generation Intel Xeon Scalable processor (formerly code -named Sapphire Rapids), Intel introduced Intel® Trust Domain Extensions (Intel® TDX).


Intel TDX provides a hardware-isolated virtualization-based trusted execution environment (TEE) called Trust Domain (TD) that helps to provide isolation from the host operating system, hypervisor, BIOS, SMM, non-TD software, and platform administrators, which include cloud service providers (CSPs). Intel TDX requires no application modification, which makes application deployment in the TEE straightforward. While Intel TDX on 4th generation Intel Xeon Scalable processors is only available to select CSPs, Intel plans to make this technology broadly available with the 5th generation Intel® Xeon® Scalable processor (code named Emerald Rapids).


With that being said, below are the few links that might be helpful for your research. 


1) What Intel® Xeon Processors Support for Intel® Trust Domain Extensions (Intel® TDX)?: https://www.intel.com/content/www/us/en/support/articles/000091103/processors/intel-xeon-processors.html

2) Which Processors Support Intel® Software Guard Extensions (Intel® SGX) EPID?: https://www.intel.com/content/www/us/en/support/articles/000092568/software/intel-security-products.html

3) Performance Considerations of Intel® Trust Domain Extensions on 4th Generation Intel® Xeon® Scalable Processors: https://www.intel.com/content/www/us/en/developer/articles/technical/trust-domain-extensions-on-4th-gen-xeon-processors.html

4) Intel® Trust Domain Extensions (Intel® TDX): https://www.intel.com/content/www/us/en/developer/tools/trust-domain-extensions/overview.html


Below is the list of Intel Xeon Processors that supports TDX and SGX respectively. 


1) Intel® Processors Supporting Intel® SGX: https://www.intel.com/content/www/us/en/architecture-and-technology/software-guard-extensions-processors.html

2) 5th Gen Intel® Xeon® Scalable Processors that supports TDX: https://www.intel.com/content/www/us/en/ark/products/series/236644/5th-gen-intel-xeon-scalable-processors.html

3) Intel® Xeon® 6 Processors that supports TDX: https://www.intel.com/content/www/us/en/ark/products/series/240357/intel-xeon-6.html


We hope this will address your queries, if there is anything further needed, we will try to assist you accordingly.


Thank You & Best Regards,


Ragulan_Intel


View solution in original post

0 Kudos
Copy link

Link Copied

5 Replies
NormanS_Intel
Moderator
‎12-12-2024 05:01 PM
234 Views
Solved Jump to solution

Hello wydx,

 

Thank you for posting in the community!

 

To ensure you receive the most specialized assistance, we have a dedicated forum that addresses these specific concerns. Therefore, I will be moving this discussion to our Server Forum. This will allow our knowledgeable community and experts to provide you with timely and accurate solutions.

 

Best regards,

Norman S.

Intel Customer Support Engineer


0 Kudos
Copy link
Ragulan_Intel
Employee
‎12-12-2024 07:09 PM
217 Views
Solved Jump to solution

Hello wydx,


Hope this message finds you well.


As you might be already aware Intel has been at the forefront of hardware-based server security for confidential computing since 2018 with the introduction of Intel® Software Guard Extensions (Intel® SGX) in the Intel® Xeon® E processors, extending into multi-socket processors with the 3rd generation Intel® Xeon® Scalable processors (formerly code-named Ice Lake). With the 4th generation Intel Xeon Scalable processor (formerly code -named Sapphire Rapids), Intel introduced Intel® Trust Domain Extensions (Intel® TDX).


Intel TDX provides a hardware-isolated virtualization-based trusted execution environment (TEE) called Trust Domain (TD) that helps to provide isolation from the host operating system, hypervisor, BIOS, SMM, non-TD software, and platform administrators, which include cloud service providers (CSPs). Intel TDX requires no application modification, which makes application deployment in the TEE straightforward. While Intel TDX on 4th generation Intel Xeon Scalable processors is only available to select CSPs, Intel plans to make this technology broadly available with the 5th generation Intel® Xeon® Scalable processor (code named Emerald Rapids).


With that being said, below are the few links that might be helpful for your research. 


1) What Intel® Xeon Processors Support for Intel® Trust Domain Extensions (Intel® TDX)?: https://www.intel.com/content/www/us/en/support/articles/000091103/processors/intel-xeon-processors.html

2) Which Processors Support Intel® Software Guard Extensions (Intel® SGX) EPID?: https://www.intel.com/content/www/us/en/support/articles/000092568/software/intel-security-products.html

3) Performance Considerations of Intel® Trust Domain Extensions on 4th Generation Intel® Xeon® Scalable Processors: https://www.intel.com/content/www/us/en/developer/articles/technical/trust-domain-extensions-on-4th-gen-xeon-processors.html

4) Intel® Trust Domain Extensions (Intel® TDX): https://www.intel.com/content/www/us/en/developer/tools/trust-domain-extensions/overview.html


Below is the list of Intel Xeon Processors that supports TDX and SGX respectively. 


1) Intel® Processors Supporting Intel® SGX: https://www.intel.com/content/www/us/en/architecture-and-technology/software-guard-extensions-processors.html

2) 5th Gen Intel® Xeon® Scalable Processors that supports TDX: https://www.intel.com/content/www/us/en/ark/products/series/236644/5th-gen-intel-xeon-scalable-processors.html

3) Intel® Xeon® 6 Processors that supports TDX: https://www.intel.com/content/www/us/en/ark/products/series/240357/intel-xeon-6.html


We hope this will address your queries, if there is anything further needed, we will try to assist you accordingly.


Thank You & Best Regards,


Ragulan_Intel


0 Kudos
Copy link
wydx
Beginner
‎12-17-2024 11:20 PM
142 Views
Solved Jump to solution
In response to Ragulan_Intel

Thank you so much for your detailed recommendations. I really appreciate you taking the time to help me. These are useful for me.

In response to Ragulan_Intel
0 Kudos
Copy link
Ragulan_Intel
Employee
‎12-17-2024 03:39 PM
156 Views
Solved Jump to solution

Hello wydx,


Hope this message finds you well.


This is a gentle follow up on this thread, we would appreciate if you could please let us know if the information provided previously was sufficient.


if everything is good from your end, we would like to obtain your approval to archive this thread from our end.


Thank You & Best Regards,

Ragulan_Intel


0 Kudos
Copy link
Ragulan_Intel
Employee
‎12-18-2024 12:05 AM
139 Views
Solved Jump to solution

Hello wydx,


Hope this message finds you well,


Thank you for your feedback, with this we are notifying you that your request will be archived as there are no pending actions from Intel Customer Support.


In the coming days, you may be invited to participate in a survey. Your feedback is highly valued, and we are eager to hear about your experience with our support.


Thank You & Best Regards,


Ragulan_Intel



0 Kudos
Copy link
Reply

Community support is provided Monday to Friday. Other contact methods are available here.

Intel does not verify all solutions, including but not limited to any file transfers that may appear in this community. Accordingly, Intel disclaims all express and implied warranties, including without limitation, the implied warranties of merchantability, fitness for a particular purpose, and non-infringement, as well as any warranty arising from course of performance, course of dealing, or usage in trade.

For more complete information about compiler optimizations, see our Optimization Notice.