Chapter 4: UEFI BIOS
75
----------------------------------------------------------------
TME, TME-MT, TDX
----------------------------------------------------------------
Memory Encryption (TME)
Select Enabled for total memory encryption support to enhance memory data security. The
options are Disabled and Enabled.
Total Memory Encryption (TME) Bypass (Available when "Memory Encryption (TME)"
is set to Enabled)
Use this feature to disable/enable the Total Memory Encryption (TME) function for physical
memory protection. The options are Auto, Disabled, and Enabled.
The following information is displayed:
• Total Memory Encryption
• Multi-Tenant (TME-MT)
• Memory Integrity
• Key Stock Amount
• TME-MT Key ID Bits
Trust Domain Extension (TDX)
TDX Secure Arbitration Mode Loader (SEAM Loader)
----------------------------------------------------------------
Software Guard Extension (SGX)
----------------------------------------------------------------
*The following SGX features are available when "Memory Encryption (TME)" is set
to Enabled and CPU supports Intel SGX
Note: Each memory channel must have at least one DIMM populated on the mother-
board to support the Intel SGX features.
SGX Factory Reset
Use this feature to perform an SGX factory reset to delete all registration data and force
an Initial Platform Establishment ow. Reboot the system for the change to take eect. The
options are Disabled and Enabled.
To Next Page
Loading...
