TDX getting started notes:

Intel TDX Demystified: A Top-Down Approach (IBM Research) https://arxiv.org/pdf/2303.15540

Fosdem talk. Benny Fuhry (Intel)

**https://fosdem.org/2024/schedule/event/fosdem-2024-2608-intel-tdx-deep-dive/**

Confidential Compute Talk Simon Johnson (Intel)

https://www.youtube.com/watch?v=z3JKExmc9-s

TDX documentation. https://www.intel.com/content/www/us/en/developer/tools/trust-domain-extensions/documentation.html#architecture (whitepaper overview is good)

AHoi attacks on TDX, SEV. First great academic security paper on these topics. They got a root shell on a production TDX server!

https://ahoi-attacks.github.io/heckler/

Google Security Review: TDX commissioned a security review from: https://services.google.com/fh/files/misc/intel_tdx_-_full_report_041423.pdf

Chips and Salsa : https://www.youtube.com/watch?v=LKcUCeZHthQ

It’s early so it’s necessary to go close to upstream sources, in this case some linux kernel support for the new instructions:

Intel’s Guest Kernel Hardening docs. https://intel.github.io/ccc-linux-guest-hardening-docs/index.html#intel-trust-domain-extension-guest-kernel-hardening-documentation

Kernel KVM and Qemu documentation: Linux Kernel documentation is pretty good, they have built in support for TDX for a while.

https://www.kernel.org/doc/html/next/x86/tdx.html

https://lwn.net/Articles/933128/

https://github.com/intel-staging/qemu-tdx/tree/tdx-qemu-next

Some interesting software packages:

**https://github.com/google/go-tdx-guest  A go library wrapping /dev/tdx_guest (but how to get that?)**