Run an application in a Realm using the Arm Confidential Compute Architecture (CCA)
Introduction
Overview: Realms
Run the Arm CCA stack using a pre-built docker container
Run an application in a Realm
Review
Next Steps

  Log an issue

  Fork and edit

  Discuss on Discord

What you've learned

You should now know how to:

  • Run the Arm reference CCA software stack on an Armv-A AEM Base FVP (Fixed Virtual Platform) with support for RME extensions.
  • Create a virtual machine in a Realm running guest Linux using a pre-built docker container.
  • Run a simple application in a Realm running guest Linux.
  • Obtain a CCA attestation token from the virtual guest in a Realm.

Knowledge Check

The Arm Confidential Compute Architecture (CCA) is available on all Arm devices.

kvmtool supports the creation of Realm guests.

An application running in the Realm inherits its confidential protection.


Back
Next