AWS provides SEV-SNP instances which can be used as the basis for CoCo.

Upstream support for CoCo using SEV-SNP instances is already available.

The difference with Azure is that for AWS, the vTPM is outside of the TEE and managed by the Hypervisor, so Hypervisor is in the TCB. The standard SNP verifier of Trustee is used for attestation.

Example SNP instances - m6a.2xlarge,r6a.2xlarge,r6a.xlarge,c6a.16xlarge,m6a.large,c6a.8xlarge,c6a.12xlarge,m6a.4xlarge,r6a.4xlarge,c6a.4xlarge,c6a.xlarge,c6a.2xlarge,m6a.xlarge,r6a.large,m6a.8xlarge

Upstream testing is with Fedora pod VM image.

As a first step, testing should be done with RHEL based pod VM image to identify any blockers.