Visible to Intel only — GUID: GUID-982019AF-DD6F-404A-8366-E61030EB0210
Visible to Intel only — GUID: GUID-982019AF-DD6F-404A-8366-E61030EB0210
Functional Validation and Multi-Instance Support
Full Functional Validation - All of the functional flows must be covered by the validation team, for both pre-production and production cases.
Note: During the signing of the trusted application, no functional tests will be executed by the team responsible for the certification flow. So it is fully under the responsibility of the business unit and application owner to verify that the trusted application is fully validated and functional in both pre-production and production.
Multi-Instance & Multi-Sessions Validation Coverage - An important aspect of this validation is to move from using a single instance of the trusted application (one trusted application session) to multiple instances. You should review and test cases in which there are several sessions running in parallel (which might be either shared on non-shared) and this is mainly based on the expected usage model of the trusted application. One of the initial questions would be whether our trusted application will be used by one specific host-side application, or whether it can/should be used by other applications as well. What will happen in that case, and how are we supporting multiple requests coming in parallel?
Note: There is a major change between the first and second generations of the VM regarding asynchronous execution of trusted applications. In Gen1 (Intel® ME 7.x), only one trusted application code could be executed at a given moment. In Gen2 (Intel ME 8.x), Intel® DAL firmware and VM can support parallel execution of different instances of trusted applications.
In addition you need to understand the difference between shared and non-shared sessions in Intel DAL Host Interface Service while opening a new session. This impacts the number of trusted application instances that will be running in the firmware.