====== Full Memory Encryption (FME) ======
[[dido:public:ra:xapend:xapend.a_glossary:start| Return to Glossary ]]

**Full Memory Encryption (FME)** is a computer architecture whcih prevents data visibility in the event of its unauthorized access or theft. FME is commonly used to protect Data-in-Motion and Data-at-Rest and increasingly recognized as an optimal method for protecting Data-in-Use by encrypting data using [[dido:public:ra:xapend:xapend.a_glossary:m:mme]].

FME for all computer memory (i.e., the stack, code and/or heap) to be encrypted individually or in total. FME has been imlemented different processors (i.e., AMD, Intel, etc) as well as mobile devices. The system provides both confidentiality and integrity protections of code and data which are encrypted everywhere outside the CPU boundary.

AMD has an imolementation of FME called [[dido:public:ra:xapend:xapend.a_glossary:s:secme]] and [[dido:public:ra:xapend:xapend.a_glossary:s:sev]],  Intel has a version of FME called [[dido:public:ra:xapend:xapend.a_glossary:t:tme]] and Apple devices((
__Apple Platform Security__,
Apple Support,
Acccessed: 8 October 2021,
[[https://support.apple.com/guide/security/encryption-and-data-protection-overview-sece3bee0835/web]]
)).

Source: [[https://en.wikipedia.org/wiki/Data_in_use ]]


/**=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
/* To add a discussion page to this page, comment out the line that says 
  ~~DISCUSSION:off~~
*/
~~DISCUSSION:on|Outstanding Issues~~
~~DISCUSSION:off~~