Software Archive
Read-only legacy content
17061 Discussions

Concurrent Protected and Standard world?

Gelareh_T_
Beginner
‎04-25-2013 12:45 PM
292 Views

Hi,

Is it possible to run a protected (MLE) and standard environment concurrently or is it always sequential? (concurrent would be similar to two virtual machines). From my understanding, an MLE can be launched either at boot time or via late launch (using SENTER).

Also does anyone know the differences between the protected environments that are produced as a result of SENTER and ENTERACCS commands?

Thank you for your help!

Gelareh

0 Kudos

Link Copied

1 Reply
Gael_H_Intel
Moderator
‎05-24-2013 03:38 PM
292 Views

Hello - hopefully this will answer your question:

All processors are required to join the measured launch environment. Letting processors with physical access to memory remain outside of the MLE would be a security violation.

The measured launch environment is always invoked using SENTER.

ENTERACCS is used to invoke the BIOS Authenticated Control Module during boot. SENTER is used to invoke the SINIT Authenticated Control module and provide a late launch of a measured launch  environment.

0 Kudos
Copy link
Reply

Community support is provided Monday to Friday. Other contact methods are available here.

Intel does not verify all solutions, including but not limited to any file transfers that may appear in this community. Accordingly, Intel disclaims all express and implied warranties, including without limitation, the implied warranties of merchantability, fitness for a particular purpose, and non-infringement, as well as any warranty arising from course of performance, course of dealing, or usage in trade.

For more complete information about compiler optimizations, see our Optimization Notice.