Shielded virtual machines rely on virtualization-based security features. The host requirements include the following:
- UEFI 2.3.1c for secure boot
- Trusted Platform Module (TPM) v2.0
- IOMMU (Intel VT-d) for direct memory access (DMA) protection
The virtual machine requirements include the following:
- Generation 2 virtual machine
- Windows Server 2012 or newer as the guest operating system