Home > Servers > PowerEdge Cyber Security > White Papers > Securing AI workloads on Dell PowerEdge with Intel Xeon processors using Intel Trust Domain Extensions > What is Intel® TDX
Intel® Trust Domain Extensions (TDX) is the newest confidential computing technology from Intel®. This hardware-based trusted execution environment (TEE) facilitates the deployment of trust domains (TD), which are hardware-isolated virtual machines (VM) designed to protect sensitive data and applications from unauthorized access.
A CPU-measured Intel® TDX module enables Intel® TDX. This software module runs in a new CPU Secure Arbitration Mode (SEAM) as a peer virtual machine manager (VMM) and supports TD entry and exit using the existing virtualization infrastructure. The module is hosted in a reserved memory space identified by the SEAM Range Register (SEAMRR).
Intel® TDX uses hardware extensions for managing and encrypting memory and protects both the confidentiality and integrity of the TD CPU state from non-SEAM mode. Intel® TDX uses architectural elements such as SEAM, a shared bit in Guest Physical Address (GPA), the secure Extended Page Table (EPT), the physical-address-metadata table, Intel® Total Memory Encryption – Multi-Key (Intel® TME-MK), and remote attestation.
Intel® TDX ensures data integrity, confidentiality, and authenticity, which empowers engineers and tech professionals to create and maintain secure systems, enhancing trust in virtualized environments.