Disaggregated computing for distributed confidential computing environment

Assignee

• Intel Corporation · US

Inventors

• Reshma Lal · Portland, US
• Pradeep M. Pappachan · Hillsboro, US
• Luis Kida · Beaverton, US
• Soham Jayesh Desai · Hillsboro, US
• Sujoy Sen · Beaverton, US
• Selvakumar Panneer · Portland, US
• Robert O. Sharp · Austin, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L9/3242
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

An apparatus to facilitate disaggregated computing for a distributed confidential computing environment is disclosed. The apparatus includes a programmable integrated circuit (IC) comprising secure device manager (SDM) hardware circuitry to: receive a tenant bitstream of a tenant and a tenant use policy for utilization of the programmable IC via the tenant bitstream, wherein the tenant use policy is cryptographically bound to the tenant bitstream by a cloud service provider (CSP) authorizing entity and signed with a signature of the CSP authorizing entity; in response to successfully verifying the signature, extract the tenant use policy to provide to a policy manager of the programmable IC for verification; in response to the policy manager verifying the tenant bitstream based on the tenant use policy, configure a partial reconfiguration (PR) region of the programmable IC using the tenant bitstream; and associate a slot ID of the PR region with the tenant use policy.