Stay organized with collections
Save and categorize content based on your preferences.
This page documents production updates to Confidential VM. Check this page for
announcements about new or updated features, bug fixes, known issues, and
deprecated functionality.
You can see the latest product updates for all of Google Cloud on the
Google Cloud page, browse and filter all release notes in the
Google Cloud console,
or programmatically access release notes in
BigQuery.
To get the latest product updates delivered to you, add the URL of this page to your
feed
reader, or add the
feed URL directly.
July 31, 2025
Support for accelerator-optimized a3-highgpu-1g machine type for securely running AI and ML workloads is now generally available, with the following specifications:
As of June 20, 2025, Confidential VM instances using AMD SEV-SNP or Intel TDX do not support remote attestation when running the following guest OS images:
SLES 15 SP7
Ubuntu 25.04
To restore remote attestation, use an earlier guest OS version such as SLES 15 SP6 or Ubuntu 24.04.
June 13, 2025
Support for general purpose C4D machine types is now generally available, featuring:
5th generation AMD EPYC processors (Turin) and Google Titanium
Support for accelerator-optimized a3-highgpu-1g machine type for securely running AI and ML workloads is now available in Preview, with the following specifications:
On February 18, 2025, Google released a security fix for Confidential VM instances using AMD SEV-SNP on N2D machine types, which might result in performance degradation. The extent of the performance impact varies depending on the specific workload.
AMD has notified Google about 3 new (2 medium risk, 1 high risk) firmware vulnerabilities affecting SEV-SNP in AMD EPYC 3rd generation (Milan) and 4th generation (Genoa) CPUs (CVE-2023-31355, CVE-2024-21978, and CVE-2024-21980).
Support for AMD SEV-SNP on Confidential VM instances is now generally available. AMD SEV-SNP is supported on N2D machine types with AMD EPYC Milan CPU platforms.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-29 UTC."],[[["\u003cp\u003eThis page provides updates on Confidential VM, including new features, bug fixes, known issues, and deprecated functionality.\u003c/p\u003e\n"],["\u003cp\u003eIntel TDX support on \u003ccode\u003ec3-standard-*\u003c/code\u003e machine types and AMD SEV on C3D machine types are now generally available.\u003c/p\u003e\n"],["\u003cp\u003eAMD SEV-SNP support on Confidential VM instances, using N2D machine types with AMD EPYC Milan CPUs, is also generally available.\u003c/p\u003e\n"],["\u003cp\u003eAMD has reported new firmware vulnerabilities (2 medium, 1 high risk) affecting SEV-SNP in AMD EPYC 3rd and 4th generation CPUs.\u003c/p\u003e\n"],["\u003cp\u003eYou can stay updated by checking the Google Cloud release notes, using the Google Cloud console, programmatically accessing BigQuery, or adding the provided feed URL to your feed reader.\u003c/p\u003e\n"]]],[],null,["# Confidential VM release notes\n\nThis page documents production updates to Confidential VM. Check this page for\nannouncements about new or updated features, bug fixes, known issues, and\ndeprecated functionality.\n\n\nYou can see the latest product updates for all of Google Cloud on the\n[Google Cloud](/release-notes) page, browse and filter all release notes in the\n[Google Cloud console](https://console.cloud.google.com/release-notes),\nor programmatically access release notes in\n[BigQuery](https://console.cloud.google.com/bigquery?p=bigquery-public-data&d=google_cloud_release_notes&t=release_notes&page=table).\n\nTo get the latest product updates delivered to you, add the URL of this page to your\n[feed\nreader](https://wikipedia.org/wiki/Comparison_of_feed_aggregators), or add the\n[feed URL](https://cloud.google.com/feeds/confidential-computing-release-notes.xml) directly.\n\nJuly 31, 2025\n-------------\n\nSupport for [accelerator-optimized a3-highgpu-1g](https://cloud.google.com/compute/docs/accelerator-optimized-machines#a3-standard-vms) machine type for securely running AI and ML workloads is now generally available, with the following specifications:\n\n- 4th Generation Intel Xeon Scalable processor (Sapphire Rapids)\n- Intel TDX\n- 1 NVIDIA H100 GPU\n\nJuly 14, 2025\n-------------\n\nAs of June 20, 2025, Confidential VM instances using AMD SEV-SNP or Intel TDX do not support remote attestation when running the following guest OS images:\n\n- SLES 15 SP7\n\n- Ubuntu 25.04\n\nTo restore remote attestation, use an earlier guest OS version such as SLES 15 SP6 or Ubuntu 24.04.\n\nJune 13, 2025\n-------------\n\nSupport for general purpose [C4D machine types](https://cloud.google.com/compute/docs/general-purpose-machines?utm_source=cloud_console&utm_medium=release_notes&utm_campaign=dec029572dce3d0d9991dd094856fdd9&_gl=1*1odqac9*_ga*OTY1OTE3MjM4LjE3NTA3ODgyNTg.*_ga_WH2QY8WWF5*czE3NTA4Mzg4MTkkbzE3JGcwJHQxNzUwODM4ODIwJGo1OSRsMCRoMA..#c4d_series) is now generally available, featuring:\n\n- 5th generation AMD EPYC processors (Turin) and Google Titanium\n\n- AMD [Secure Encrypted Virtualization (SEV)](https://www.amd.com/en/developer/sev.html) which can encrypt the memory of the VM to protect data in-use\n\nApril 25, 2025\n--------------\n\nSupport for accelerator-optimized [a3-highgpu-1g machine type](https://cloud.google.com/compute/docs/accelerator-optimized-machines#a3-standard-vms) for securely running AI and ML workloads is now available in **Preview**, with the following specifications:\n\n- 4th Generation Intel Xeon Scalable processor (Sapphire Rapids)\n- Intel TDX\n- 1 NVIDIA H100 GPU\n\nMarch 25, 2025\n--------------\n\nOn February 18, 2025, Google released a security fix for Confidential VM instances using AMD SEV-SNP on N2D machine types, which might result in performance degradation. The extent of the performance impact varies depending on the specific workload.\n\nSeptember 27, 2024\n------------------\n\nSupport for [Intel TDX on `c3-standard-*` machine types](https://cloud.google.com/confidential-computing/confidential-vm/docs/supported-configurations#machine-type-cpu-zone) is now released to General Availability.\n\nSeptember 20, 2024\n------------------\n\nSupport for [AMD SEV on C3D machine types](https://cloud.google.com/confidential-computing/confidential-vm/docs/supported-configurations#machine-type-cpu-zone) is now released to General Availability.\n\nAugust 05, 2024\n---------------\n\nAMD has notified Google about 3 new (2 medium risk, 1 high risk) firmware vulnerabilities affecting SEV-SNP in AMD EPYC 3rd generation (Milan) and 4th generation (Genoa) CPUs (CVE-2023-31355, CVE-2024-21978, and CVE-2024-21980).\n\nFor more information, see the [GCP-2024-046 security bulletin](https://cloud.google.com/confidential-computing/confidential-vm/docs/security-bulletins#gcp-2024-046).\n\nJune 18, 2024\n-------------\n\nSupport for [AMD SEV-SNP on Confidential VM instances](https://cloud.google.com/confidential-computing/confidential-vm/docs/confidential-vm-overview#amd_sev-snp) is now **generally available**. AMD SEV-SNP is supported on N2D machine types with AMD EPYC Milan CPU platforms.\n\nMarch 28, 2024\n--------------\n\nSupport for Intel TDX on general purpose [C3 standard machine types](https://cloud.google.com/compute/docs/general-purpose-machines#c3_machine_types) is now available in **Preview** .\n\nFebruary 26, 2024\n-----------------\n\n[Live migration](https://cloud.google.com/confidential-computing/confidential-vm/docs/troubleshoot-live-migration) is now **generally available** on new Confidential VM instances that meet the following configuration criteria:\n\n- An N2D machine type with AMD EPYC Milan CPU platform\n\n- AMD SEV Confidential Computing technology\n\n- An operating system image that supports live migration\n\nJanuary 19, 2024\n----------------\n\nSupport for AMD SEV-SNP on general purpose [N2D machine types](https://cloud.google.com/compute/docs/general-purpose-machines#n2d_machines) is now available in **Preview** .\n\nJune 16, 2022\n-------------\n\nSupport for 3rd generation AMD EPYC Milan processors on general purpose [N2D machine types](https://cloud.google.com/compute/docs/general-purpose-machines#n2d_machines) is now **generally available**, featuring:\n\n- AMD [Secure Encrypted Virtualization (SEV)](https://developer.amd.com/sev/) which can encrypt the memory of the VM to protect data in-use \nSupport for compute-optimized [C2D machine types](https://cloud.google.com/compute/docs/compute-optimized-machines#c2d_machine_types) is now **generally available**, featuring:\n\n- 3rd generation AMD EPYC Milan processors\n- AMD [Secure Encrypted Virtualization (SEV)](https://developer.amd.com/sev/) which can encrypt the memory of the VM to protect data in-use\n- Large VM sizes\n- Optimized for high-performance computing (HPC)\n\nMay 20, 2022\n------------\n\nSupport for 3rd generation AMD EPYC Milan processors on general purpose [N2D machine types](https://cloud.google.com/compute/docs/general-purpose-machines#n2d_machines) is now available in **Preview**, featuring:\n\n- AMD [Secure Encrypted Virtualization (SEV)](https://developer.amd.com/sev/) which can encrypt the memory of the VM to protect data in-use \nSupport for compute-optimized [C2D machine types](https://cloud.google.com/compute/docs/compute-optimized-machines#c2d_machine_types) is now available in **Preview**, featuring:\n\n- 3rd generation AMD EPYC Milan processors\n- AMD [Secure Encrypted Virtualization (SEV)](https://developer.amd.com/sev/) which can encrypt the memory of the VM to protect data in-use\n- Large VM sizes\n- Optimized for high-performance computing (HPC)\n\nDecember 01, 2020\n-----------------\n\n[Confidential VM](https://cloud.google.com/compute/confidential-vm/docs/about-cvm) is now **generally available** on general purpose [N2D machine types](https://cloud.google.com/compute/docs/general-purpose-machines#n2d_machines), which feature:\n\n- 2nd generation AMD EPYC Rome processors\n- AMD [Secure Encrypted Virtualization (SEV)](https://developer.amd.com/sev/) which can encrypt the memory of the VM to protect data in-use\n\nJuly 14, 2020\n-------------\n\n[Confidential VM](https://cloud.google.com/compute/confidential-vm/docs/about-cvm) is now available in **Beta** on general purpose [N2D machine types](https://cloud.google.com/compute/docs/general-purpose-machines#n2d_machines), which feature:\n\n- 2nd generation AMD EPYC Rome processors\n- AMD [Secure Encrypted Virtualization (SEV)](https://developer.amd.com/sev/) which can encrypt the memory of the VM to protect data in-use"]]
