Nitro Security Chip

Contents

keyboard_tab
Start course
Overview
Difficulty
Intermediate
Duration
11m
Students
43
Ratings
5/5
starstarstarstarstar
Description

This course explores the AWS Nitro System, covering the basics of the service, its core components, and its benefits.

Learning Objectives

  • Learn what the AWS Nitro system is
  • Understand the key components that make up the AWS Nitro system
  • Understand the difference between the Nitro cards of an EC2 instance
  • Explore the benefits of the AWS Nitro System

Intended Audience

This course is intended for those who are looking to learn more about the underlying architecture of EC2 instances at the virtualization level.

Prerequisites

As a prerequisite to this course, you should be familiar with virtualization methods and concepts, including components such as hypervisors, in addition to an understanding of computing hardware and terms. 

Transcript

Let’s move our attention to the 2nd core component of the Nitro System, that being the Nitro Security Chip, which is a custom microcontroller that is physically embedded onto the motherboard of the host and is used to protect hardware resources, enforcing the hardware root of trust.

It also traps all I/O to non-volatile storage, it holds system boot information to allow measurement and validation checks to be performed, and the chip itself can only be controlled and written to by the Nitro card controller, not an instance.  Another responsibility of the security chip is to ensure that it monitors all of the hardware interfaces.

About the Author
Avatar
Stuart Scott
AWS Content Director
Students
197150
Labs
1
Courses
191
Learning Paths
131

Stuart has been working within the IT industry for two decades covering a huge range of topic areas and technologies, from data center and network infrastructure design, to cloud architecture and implementation.

To date, Stuart has created 150+ courses relating to Cloud reaching over 180,000 students, mostly within the AWS category and with a heavy focus on security and compliance.

Stuart is a member of the AWS Community Builders Program for his contributions towards AWS.

He is AWS certified and accredited in addition to being a published author covering topics across the AWS landscape.

In January 2016 Stuart was awarded ‘Expert of the Year Award 2015’ from Experts Exchange for his knowledge share within cloud services to the community.

Stuart enjoys writing about cloud technologies and you will find many of his articles within our blog pages.