From 81a7666292420a1bac1c804216aad7ae0b07ab06 Mon Sep 17 00:00:00 2001 From: Yonghua Huang Date: Wed, 16 Oct 2019 12:02:30 +0800 Subject: [PATCH] doc: hld-security introduction update update the 'Introduction' section. Signed-off-by: Yonghua Huang --- doc/developer-guides/hld/hld-security.rst | 18 ++++++++---------- 1 file changed, 8 insertions(+), 10 deletions(-) diff --git a/doc/developer-guides/hld/hld-security.rst b/doc/developer-guides/hld/hld-security.rst index bfd770f73..90e4e6640 100644 --- a/doc/developer-guides/hld/hld-security.rst +++ b/doc/developer-guides/hld/hld-security.rst @@ -9,19 +9,17 @@ Security high-level design Introduction ************ -This document describes the ACRN security high level design on Apollo -Lake SoCs, including information about: +This document describes security high level design in ACRN, +including information about: -- How to build a secure hypervisor, SOS, and UOS -- How to extend platform root of trust with secure boot -- How to design vTPM (virtual TPM) -- How to create a virtualized tamper-resistant secure storage service -- Platform security feature virtualization and enablement (such as SGX, - CSE/HECI/DAL, or SMEP/SMAP) -- Hypervisor hardening +- Secure Boot in ACRN +- Hypervisor Security Enhancement, including memory management,secure + hypervisor interfaces etc. +- Platform Security Features Virtualizaion, such as the virtualizaion + of TPM(vTPM) and SGX(vSGX) This document is for developers, validation teams, architects, and -maintainers of ACRN for Apollo Lake SoCs. +maintainers of ACRN. The readers should be familiar with the basic concepts of system virtualization and ACRN hypervisor implementation.