IDE (Integrity & Data Encryption) Complete Guide

1. What is IDE?

What is Integrity and Data Encryption?

IDE (Integrity and Data Encryption) is a PCIe security feature that provides cryptographic protection for PCIe transactions, ensuring data confidentiality and integrity across the PCIe fabric.

IDE Goals

Confidentiality: Encrypt TLP data (AES-GCM)
Integrity: Detect tampering (MAC)
Replay Protection: Sequence numbers prevent replay
Key Management: Secure key establishment (SPDM)

IDE Modes

Mode	Description	Use Case
Link IDE	Encrypts all traffic on a link	Server interconnects, external cables
Selective IDE	Encrypts traffic to/from specific devices	TEE device assignment, VM isolation

2. Why IDE?

Threat Model

    Physical/Interposer Attacks:
    
    ┌────────┐                    ┌────────┐
    │  CPU   │════════════════════│ Device │
    │        │    PCIe Link       │        │
    └────────┘         ▲          └────────┘
                       │
                  ┌────┴────┐
                  │ ATTACKER│  ← Can snoop, modify, inject
                  │ (probe) │
                  └─────────┘
    
    Without IDE:
    - Attacker can read sensitive data
    - Attacker can modify transactions
    - Attacker can replay old transactions
    
    With IDE:
    - Data encrypted (confidential)
    - Modifications detected (MAC check fails)
    - Replays detected (sequence check fails)

Use Cases

Confidential Computing: Protect data to/from TEE devices
External Cables: Secure PCIe over cable
Multi-host: Isolate traffic in shared fabric
Compliance: Data protection regulations

3. Link IDE

What is Link IDE?

Link IDE encrypts all TLP traffic on a PCIe link between two directly connected ports. It provides link-level security, re-encrypting at each hop.

Link IDE Architecture

    ┌──────────────────┐         ┌──────────────────┐
    │    Port A        │         │    Port B        │
    │                  │         │                  │
    │  TLP ──► Encrypt │═════════│ Decrypt ──► TLP  │
    │         (AES-GCM)│ Cipher  │ (AES-GCM)        │
    │                  │ Text    │                  │
    └──────────────────┘         └──────────────────┘
    
    Key: Unique per link direction (A→B, B→A)
    Scope: Single link only (re-encrypt at switch)

Link IDE Characteristics

Encrypts entire link traffic
Per-link keys (not end-to-end)
Switch re-encrypts with different keys
Simpler key management

4. Selective IDE

What is Selective IDE?

Selective IDE provides end-to-end encryption for traffic between specific endpoints, regardless of intermediate hops. Traffic is identified by stream ID and encrypted/decrypted only at endpoints.

Selective IDE Architecture

    ┌─────────┐                              ┌─────────┐
    │  Host   │     ┌────────┐               │ Device  │
    │  TEE    │─────│ Switch │───────────────│  (VF)   │
    │         │     │        │               │         │
    └────┬────┘     └────────┘               └────┬────┘
         │                                        │
         │   Encrypt                    Decrypt   │
         │◄─────────────────────────────────────►│
         │         (End-to-End IDE)               │
         │                                        │
         │  Switch forwards encrypted TLPs       │
         │  without decryption                   │

Selective IDE Streams

IDE Stream = protected traffic flow
Identified by Stream ID
Multiple streams per device possible
Per-stream keys

5. IDE Encryption Details

Algorithm: AES-GCM

AES-256-GCM: 256-bit key, Galois Counter Mode
Authentication: 96-bit MAC tag
Nonce: 96-bit (includes sequence number)

IDE TLP Format

    IDE-Protected TLP Structure:
    
    ┌──────────────────────────────────────────────────────────┐
    │                    TLP Header                             │
    │               (Modified for IDE)                          │
    ├──────────────────────────────────────────────────────────┤
    │                  Encrypted Payload                        │
    │              (AES-256-GCM ciphertext)                    │
    ├──────────────────────────────────────────────────────────┤
    │                      MAC Tag                              │
    │                    (12 bytes)                             │
    └──────────────────────────────────────────────────────────┘
    
    MAC covers: Header (AAD) + Encrypted payload

Replay Protection

Sequence number in nonce
Receiver tracks expected sequence
Out-of-sequence packets rejected
Sliding window for reordering tolerance

6. SPDM Key Establishment

What is SPDM?

SPDM (Security Protocol and Data Model) is a DMTF standard for device authentication and key exchange. PCIe IDE uses SPDM for secure key establishment.

SPDM Flow

GET_VERSION: Negotiate SPDM version
GET_CAPABILITIES: Exchange capabilities
NEGOTIATE_ALGORITHMS: Agree on crypto algorithms
GET_DIGESTS: Get certificate chain digest
GET_CERTIFICATE: Retrieve device certificate
CHALLENGE: Authenticate device
KEY_EXCHANGE: Establish session key
FINISH: Complete handshake

Key Hierarchy

    Root Key (Device Certificate)
         │
         ▼
    Session Key (SPDM KEY_EXCHANGE)
         │
         ▼
    IDE Key (derived for IDE encryption)
         │
         ├──► TX Key (transmit direction)
         │
         └──► RX Key (receive direction)

7. TDISP (TEE Device Interface Security Protocol)

What is TDISP?

TDISP extends IDE to support Trusted Execution Environment (TEE) device assignment, enabling secure attachment of devices to confidential VMs (CVMs).

TDISP States

State	Description
CONFIG_UNLOCKED	Device configuration accessible
CONFIG_LOCKED	Configuration locked for TEE use
RUN	Device operational, IDE active
ERROR	Security error occurred

TDISP + IDE Flow

VMM assigns device to CVM
SPDM authentication and key exchange
TDISP locks device configuration
Selective IDE stream established
CVM accesses device via encrypted path
VMM cannot snoop CVM-device traffic

8. IDE Extended Capability

Offset	Register
00h	Extended Capability Header (ID = 0030h)
04h	IDE Capability
08h	IDE Control
0Ch+	Stream Registers (per stream)

Key Capability Fields

Link IDE Supported: Link IDE capability
Selective IDE Supported: Selective IDE capability
Number of TCCs: Traffic Class Channels
Number of Selective IDE Streams: Stream count

9. System Configuration

Enabling Link IDE

Verify Link IDE support on both ports
Perform SPDM authentication
Establish session and derive keys
Program IDE keys into hardware
Enable Link IDE in control register
Send IDE_SYNC message to synchronize

Enabling Selective IDE

Verify Selective IDE support
Allocate Stream ID
SPDM authentication with endpoint
Configure stream routing at switches
Program per-stream keys
Enable stream

Performance Consideration

IDE encryption/decryption adds latency (~10-30ns) and may impact throughput. Hardware acceleration (AES-NI equivalent in device) minimizes overhead.