Azure trusted launch for Virtual Machines now in public preview
Published date: March 03, 2021
Azure trusted launch protects your virtual machines against boot kits, rootkits, and kernel-level malware.
Trusted launch allows administrators to deploy virtual machines with verified and signed bootloaders, OS kernels, and drivers. By leveraging secure and measured boot, administrators gain insights and confidence of the entire boot chain's integrity. With virtual Trusted Platform Module (vTPM), administrators can securely protect keys, certificates, and secrets in the virtual machines. In addition, administrators can monitor and attest to the integrity of virtual machines as well as reacting to any changes to the attestation policy baseline. Azure Security Center serves as a single pane of glass for integrity alerts, recommendations, and remediations generated by trusted launch. These new features are easily enabled - trusted launch is switched on with a simple change in deployment code or a checkbox within the Azure portal for all virtual machines.
To learn more and enable this feature for your deployments, read our documentation.