当前位置:首页 > 报告详情

使用 eSFI 和 PCIe-MI 管理和保护您的 PCIe 基础架构.pdf

上传人: 明**** 编号:1011692 2025-12-21 20页 1.03MB

1、Paul Kaler,Storage&Security Futures Architect,HPEAustin Bolen,Server Engineering,Dell TechnologiesManage and Secure your PCIe Infrastructure using eSFI and PCIe-MIPaul Kaler,Storage&Security Futures Architect,HPEAustin Bolen,Server Engineering,Dell TechnologiesManage and Secure your PCIe Infrastruct

2、ure using eSFI and PCIe-MIHARDWARE MANAGEMENTPCIe Management Interface(PCIe-MI)Standards-based BMC interface to perform PCIe-specific management operationsEnables BMCs to perform PCIe initialization(e.g.,reading/writing configuration space)Enhanced System Firmware Intermediary(eSFI)Standards-based B

3、MC interface to control visibility of PCIe components to an in-band hostEnables BMCs to initialize PCIe components prior to exposing to an in-band hostEnhances Downstream Port traffic filtering to enable only out-of-band trafficOverviewGeneric management operations already covered by Platform Level

4、Data Model(PLDM)Sensor monitoring(e.g.,temperature),firmware update,etc.Security already covered by Security Protocol and Data Model(SPDM)Measurement,authentication,secure sessions,authorization,etc.Device specific management already covered by protocols such as:NC-SI for network controllersNVMe-MI

5、for NVMe devicesCCI for CXL type 3 memory devicesPCIe-MI enables a standard management protocol across PCIe device types for PCIe-specific operationsPCIe Configuration Space accessGetting/Setting link subdivisionsGetting/Setting clocking modesMotivation for PCIe Architected OOB ManagementCover Gaps

6、Not Handled by Existing OOB Management StandardsEliminate duplication of effortPCIe-specific functionality is often duplicated for each PCIe device typeReduce vendor-specific implementations to ease adoption.Eliminate the need for proprietary in-band management toolsSystem vendor-developed managemen

word格式文档无特别注明外均可编辑修改,预览文件经过压缩,下载原文更清晰!
三个皮匠报告文库所有资源均是客户上传分享,仅供网友学习交流,未经上传用户书面授权,请勿作商用。
根据标记内容,全文主要围绕PCIe基础设施的管理与安全展开,重点介绍了eSFI和PCIe-MI技术。 - **PCIe Management Interface (PCIe-MI)**: 标准化的BMC接口,用于执行PCIe特定管理操作,如配置空间读写。 - **Enhanced System Firmware Intermediary (eSFI)**: 控制PCIe组件对带内主机的可见性,允许BMC在暴露给带内主机之前初始化PCIe组件。 - **PCIe-MI和eSFI的优势**: - 覆盖现有OOB管理标准未处理的PCIe特定功能。 - 提供对称的带内/带外可管理性。 - 简化系统硬件,促进不同厂商设计的系统板和PCIe组件的互操作性。 - 简化和开发简化,如使用eSFI限制MCTP上的流量,并启用BMC控制的SPDM安全功能。 - **增强安全性**:通过PCIe-MI和eSFI提供更安全的PCIe组件管理,包括隔离未认证的PCIe组件和配置热插拔自加密NVMe驱动器。
简化PCIe设备管理?" "eSFI如何提升PCIe安全防护?" 未来数据中心必备技术?"
客服
商务合作
小程序
服务号
折叠