Importance and usage of Intel TXT(LT) on Desktop

Importance and usage of Intel TXT(LT) on Desktop

Hello. I am a desktop Linux user, and my motherboard supports Intel TXT(LT) technology. I have read about this technology and have understood, that it enhances security, when I have running virtual machines, and isolates pieces of memory, which VM can use, so that anything running inside VM cannot bring harm to my real OS (am I right?). Though I do not use virtualization very often, and when I use it, it is not very serious (VirtualBox or Qemu), it seems to me, that Intel TXT is very useful, as there is no such thing as "too much security". However, Intel TXT(LT) is disabled by default in my BIOS, and the question arises: if it is not enabled by default, then it is not recommended by MOBO manufacturer. So, could you please explain - Are there any reasons _not to use_ Intel TXT(LT) in my usecase? Can there be any problems with it? Thank you.

4 posts / 0 new
Last post
For more complete information about compiler optimizations, see our Optimization Notice.

There are some clues on how the Intel(R) TXT works in the Intel(R) TXT Primer. Here is the link: https://software.intel.com/en-us/articles/intel-trusted-execution-technology-a-primer/.  -Thai

I am going to buy a new CPU. I have Intel Core 2 duo 4300. I've already chosen Intel i5-2500/i5-2500k (Sandy Bridge) as my new target CPU. I've read a lot of details about Sandy Bridge family, P67/H67 chipsets. My question is about TXT/VT-d.

As Intel COMPARISON pages shows there is a (major/minor?) difference between these two CPUs: lack of TXT/VT-d in i5-2500K model.

My question is.. when exactly and in what software do these options matter? Please, share some (or many) examples of real application of these two technologies.    http://www.besanttechnologies.com/training-courses/php-training/php-training-institute-in-chennai | http://www.trainingintambaram.in/salesforce-training-in-chennai.html

For Intel® Trusted Execution Technology (Intel(R) TXT), it is more related to security so here is more information on this topic:http://www.intel.com/content/www/us/en/architecture-and-technology/trusted-execution-technology/malware-reduction-general-technology.html

Here are some more information on Intel® Virtualization Technology for Directed I/O (VT-d):

Intel® Virtualization Technology for Directed I/O (VT-d): Enhancing Intel platforms for efficient virtualization of I/O devices

I/O virtualization features facilitate offloading of multi-core packet processing to network adapters as well as direct assignment of virtual machines to virtual functions, including disk I/O. Examples include Virtual Machine Device Queues (VMDQ), Single Root I/O Virtualization (SR-IOV, also a PCI-SIG standard), and Intel® Data Direct I/O Technology enhancements (Intel® DDIO).

Regards,

-Thai

 

Leave a Comment

Please sign in to add a comment. Not a member? Join today