> This all should be summarized in the documentation (high-level model and > corner cases). I am not sure whether it is necessary to document L1TF explicitly, since it is quite obvious that MKTME doesn't prevent that. IMHO if needed we only need to mention MKTME doesn't prevent any sort of cache based attack, since data in cache is in clear. In fact SGX doesn't prevent this either.. Thanks, -Kai
