Google Cloud Shielded VM Tutorial: Architecture, Pricing, Use Cases, and Hands-On Guide for Compute

Category

Compute

1. Introduction

Shielded VM is a security hardening capability for Google Cloud Compute Engine virtual machines that helps protect your instances from low-level attacks such as bootkits and rootkits.

In simple terms: Shielded VM helps ensure your VM boots using trusted software, and it provides signals you can monitor if the VM’s boot integrity changes unexpectedly.

Technically, Shielded VM combines Secure Boot, a virtual Trusted Platform Module (vTPM), and Integrity Monitoring to verify and measure the VM’s boot process. These protections make it harder for attackers (or accidental misconfiguration) to persist malware “below the OS,” where traditional endpoint tools often have limited visibility.

The main problem Shielded VM solves is boot-level compromise—when the firmware/bootloader/kernel is modified to hide malicious activity, survive reboots, and evade detection.

2. What is Shielded VM?

Shielded VM is a set of security features for Compute Engine instances in Google Cloud designed to protect against threats that attempt to compromise the VM at boot time or modify the boot chain.

Official purpose (what Google Cloud positions it for)

Shielded VM is intended to: – Defend against boot-level and firmware-level malware (for example, bootkits/rootkits). – Prevent untrusted code from executing during boot (when Secure Boot is enabled). – Provide integrity signals and measurements so you can detect unexpected changes and respond.

Official docs: https://cloud.google.com/compute/shielded-vm/docs

Core capabilities

Shielded VM is primarily composed of: – Secure Boot: Verifies that boot components are signed and trusted before they run. – vTPM (virtual TPM): A virtualized hardware trust module that can store keys and record measurements of the boot process. – Integrity Monitoring: Surfaces integrity-related signals so you can monitor and alert on boot integrity status.

Major components (conceptual view)

• UEFI firmware (used to support Secure Boot and measured boot capabilities)
• Bootloader and kernel signature verification (Secure Boot path)
• vTPM for protected storage and measured boot registers (PCRs)
• Integrity reporting surfaced through Google Cloud tooling (Console; integrations vary—verify in official docs for exact metric/log names)

Service type

Shielded VM is not a standalone product you deploy. It is a security feature of Compute Engine instances that you enable at instance creation (and manage through instance configuration/APIs).

Scope (zonal/regional/project)

Shielded VM settings apply at the VM instance level, and since Compute Engine VMs are typically zonal resources, Shielded VM is effectively zonal per-instance configuration within a project.

How it fits into the Google Cloud ecosystem

Shielded VM is part of the broader Google Cloud compute security toolbox: – Compute Engine for VM workloads – Cloud IAM for access control to create/modify instances and view integrity details – Cloud Monitoring / Logging for operational visibility and alerting (exact signals and where they appear can evolve—verify in official docs) – Works alongside other security controls like: – OS Login and IAM-controlled SSH access – VPC firewall rules, Cloud NAT, and IAP TCP forwarding – Confidential VM (different goal: memory encryption in use) – Customer-managed encryption keys (CMEK) for disks (data-at-rest encryption control)

3. Why use Shielded VM?

Business reasons

• Reduce risk of high-impact compromise: Boot-level persistence is hard to detect and often leads to severe incidents.
• Support compliance and audit expectations: Many security programs require stronger controls for platform integrity and tamper resistance.
• Lower incident response cost: Better integrity signals can shorten investigation time.

Technical reasons

• Blocks or reduces boot-chain tampering with Secure Boot.
• Adds measured boot signals with vTPM that can support attestation-style workflows.
• Works at the compute layer (below the OS), complementing endpoint protection and OS hardening.

Operational reasons

• Standardize hardening for VM fleets (especially in MIGs).
• Improves visibility into a class of issues that are otherwise opaque.
• Integrates with infrastructure-as-code patterns (Terraform, deployment pipelines) via instance configuration.

Security/compliance reasons

• Helps address controls around:
• platform integrity
• secure configuration baselines
• detection of unauthorized changes
• Useful in regulated environments (finance, healthcare, public sector) where hardening and evidence matter.

Scalability/performance reasons

• Shielded VM is designed to be largely transparent to typical workloads.
• It scales with your fleet because it’s configured per VM/template and can be rolled out gradually.

(Performance impact is workload- and configuration-dependent; verify in official docs and test in staging for latency-sensitive environments.)

When teams should choose Shielded VM

Choose Shielded VM when: – You run internet-facing services on Compute Engine. – You operate multi-tenant or sensitive workloads. – You need higher confidence in boot integrity. – You want a default secure baseline for VM fleets.

When teams should not choose it

Shielded VM may not be the right fit when: – Your workflow depends on custom kernels, unsigned bootloaders, or low-level drivers that are incompatible with Secure Boot. – You rely on OS images or special configurations that aren’t compatible with Shielded VM features (verify supported images/OSs). – You need protection for data-in-use memory; Shielded VM is not a substitute for Confidential VM.

4. Where is Shielded VM used?

Industries

• Financial services (payments, fraud systems, core banking services)
• Healthcare (PHI workloads on VMs)
• Retail/e-commerce (checkout services, customer accounts)
• SaaS and B2B platforms (multi-tenant environments)
• Media and gaming (backend services requiring strong hardening)
• Government and education (baseline security and compliance)

Team types

• Platform engineering teams building secure VM blueprints
• SRE/operations teams running large VM fleets
• Security engineering teams implementing hardening and detection
• DevOps teams building CI/CD and golden image pipelines
• Compliance and audit teams requiring integrity controls

Workloads

• Web/API services (Nginx/Envoy/Java/.NET workloads)
• VM-based Kubernetes nodes (when using VM node pools—verify product specifics such as “Shielded GKE nodes” in GKE docs)
• Bastion-less admin patterns using IAP + OS Login
• Legacy apps that require VMs but still need strong baseline security
• Data processing workers (batch) where fleet security matters

Architectures

• Managed Instance Groups (MIGs) with hardened instance templates
• Blue/green or canary deployments where hardening can roll out gradually
• Hybrid patterns (VPN/Interconnect to on-prem) where VM integrity is critical
• Multi-project organizations enforcing guardrails (organization policy, IAM)

Production vs dev/test usage

• Production: strong fit—security baseline plus monitoring/alerting.
• Dev/test: still valuable, especially for “shift-left” detection of image/kernel changes. However, Secure Boot can break developer workflows that depend on custom kernels/modules, so align with your engineering needs.

5. Top Use Cases and Scenarios

Below are realistic scenarios where Shielded VM commonly fits.

1) Secure baseline for all internet-facing Compute Engine VMs

• Problem: Public endpoints are common targets; attackers may aim for persistence.
• Why Shielded VM fits: Secure Boot and measured boot reduce the risk of stealthy boot-chain compromise.
• Example: A public API service in a MIG uses Shielded VM across all instances, with alerts on integrity status changes.

2) Hardened managed instance groups (MIGs) for stateless services

• Problem: Large fleets amplify the blast radius of an image compromise.
• Why it fits: Shielded settings are configured in instance templates and applied consistently.
• Example: A multi-zone MIG runs Shielded VM with Secure Boot enabled, updated via rolling replacements.

3) Secure “golden image” pipelines

• Problem: Image supply chain issues can introduce boot-level tampering.
• Why it fits: Secure Boot requires trusted signatures; integrity signals help validate images behave as expected.
• Example: Packer builds images; the platform team validates Shielded VM integrity signals in staging before promoting images.

4) Compliance-driven workloads requiring stronger platform integrity evidence

• Problem: Auditors require evidence of platform hardening and integrity monitoring.
• Why it fits: Shielded VM is a concrete compute-layer control with monitorable signals.
• Example: PCI-scoped payment microservices on VMs use Shielded VM plus OS Login and centralized logging.

5) Protecting administrative jump workloads (without a traditional bastion)

• Problem: Admin access targets are high value; boot compromise can steal credentials.
• Why it fits: Shielded VM reduces boot-level persistence risk, while IAP reduces network exposure.
• Example: Admin utility VM has no external IP; accessed only via IAP TCP forwarding and OS Login, with Shielded VM enabled.

6) Running third-party security agents with higher assurance

• Problem: Endpoint agents can be bypassed by low-level malware.
• Why it fits: Shielded VM provides a stronger foundation and integrity signals below the OS layer.
• Example: SOC requires EDR + Shielded VM for workloads handling customer data.

7) Multi-team shared projects where “untrusted” images might be introduced

• Problem: Different teams can accidentally deploy misconfigured or risky OS images.
• Why it fits: Shielded VM can be standardized; org policies can help enforce secure baselines (verify exact org policy constraints in official docs).
• Example: A platform project only allows instance templates that enable Shielded VM.

8) Migration from on-prem secure boot/TPM expectations to cloud VMs

• Problem: On-prem standards often require Secure Boot + TPM.
• Why it fits: Shielded VM provides cloud equivalents (Secure Boot + vTPM).
• Example: A regulated enterprise migrates app servers to Compute Engine and maps controls to Shielded VM.

9) Detecting unexpected boot changes after an incident

• Problem: After an intrusion, teams need to know if boot integrity was affected.
• Why it fits: Integrity Monitoring provides a signal trail (where available) and can be integrated into IR runbooks.
• Example: An incident triggers a review of integrity status across affected VMs; compromised nodes are replaced.

10) Secure VM nodes for container clusters (VM-based nodes)

• Problem: Node compromise undermines cluster security.
• Why it fits: Shielded VM helps protect node boot integrity.
• Example: A cluster uses Shielded VM-backed nodes; node pools roll out updates with integrity checks in monitoring.

11) Secure edge processing in DMZ-like VPC segments

• Problem: DMZ workloads are exposed and frequently attacked.
• Why it fits: Shielded VM adds defense-in-depth.
• Example: TLS termination proxies run on Shielded VMs with minimal inbound firewall rules.

12) High-value license servers or control-plane components on VMs

• Problem: Attackers target systems that can unlock broader access.
• Why it fits: Boot-level protections reduce stealth persistence.
• Example: A license server uses Shielded VM and strict IAM + OS Login; integrity status changes trigger paging.

6. Core Features

This section focuses on Shielded VM features that are generally documented as part of Compute Engine’s Shielded VM offering. For the latest supported combinations (OS images, machine families, and exact behaviors), verify in official docs.

Secure Boot

• What it does: Ensures the VM boots only using trusted, signed boot software. If the bootloader/kernel components aren’t trusted, the VM may fail to boot (by design).
• Why it matters: Prevents a common persistence technique: altering the boot chain to load malware early.
• Practical benefit: Strong preventative control against bootkits and some rootkits.
• Limitations/caveats:
• Can be incompatible with custom kernels, unsigned bootloaders, or certain drivers.
• Requires a compatible guest environment (often UEFI/Gen2-style). Verify supported images and requirements.

vTPM (Virtual Trusted Platform Module)

• What it does: Provides a virtual TPM device for the VM. TPMs can securely store keys and record measurements (PCR values) of the boot chain.
• Why it matters: TPM-backed measurements make tampering detectable and support stronger trust decisions.
• Practical benefit: Enables measured boot signals and can support remote attestation patterns using Compute Engine APIs.
• Limitations/caveats:
• vTPM is not the same as a physical hardware TPM, but it provides similar primitives in a virtualized environment.
• Guest OS support varies; verify for your OS and image.

Integrity Monitoring

• What it does: Exposes boot integrity information so you can monitor whether the VM booted as expected.
• Why it matters: Detection is the second half of defense-in-depth—if something changes, you want to know quickly.
• Practical benefit: Supports alerting and fleet visibility (for example, “which VMs have unexpected boot changes?”).
• Limitations/caveats:
• Integrity Monitoring primarily relates to boot-time integrity, not post-boot runtime compromise.
• How integrity events/metrics are surfaced can evolve; verify current Cloud Monitoring/Logging integration points in official docs.

Measured boot and PCR values (attestation building blocks)

• What it does: Measures boot components into TPM PCRs. Compute Engine exposes an API to retrieve Shielded VM identity/measurements (for attestation workflows).
• Why it matters: Enables systems to make trust decisions (for example, allowing a VM to access sensitive resources only if it matches a known-good boot state).
• Practical benefit: Can be used to build stronger admission controls for sensitive apps (custom integration required).
• Limitations/caveats:
• Remote attestation workflows require careful design: baselines, rotation, and false-positive handling.
• Not a turnkey “attestation service”; you build and operate the policy around it.

Instance configuration controls (per VM / per template)

• What it does: Lets you enable/disable Shielded VM features as part of the instance configuration.
• Why it matters: Enables standardized secure-by-default templates.
• Practical benefit: Repeatability across environments and fleets (MIGs, blueprints, IaC).
• Limitations/caveats:
• Some changes may require stopping the VM to modify (verify per-field behavior in docs).

Integration with fleet operations (templates, policies, monitoring)

• What it does: Works with instance templates/MIGs; integrates with IAM and observability tooling.
• Why it matters: Security must be operable at scale.
• Practical benefit: You can roll out security posture updates via templates and continuous deployment.
• Limitations/caveats:
• Enforcing organization-wide requirements depends on org policy/IaC controls; confirm the exact enforcement options in current docs.

7. Architecture and How It Works

High-level service architecture

At a high level: 1. You configure a Compute Engine VM with Shielded VM options (Secure Boot, vTPM, Integrity Monitoring). 2. During VM boot, the platform verifies trusted boot components (Secure Boot) and records boot measurements (vTPM). 3. Integrity signals are made available for monitoring and operational response (Integrity Monitoring + APIs).

Control flow / data flow (conceptual)

• Control plane:
• VM creation/update requests go through the Compute Engine API.
• IAM authorizes whether a user/service account can create/modify/view instances and related attributes.
• Data plane:
• Boot process runs inside the virtualization environment.
• vTPM stores measurements/keys and provides an interface to the guest OS.
• Integrity signals are surfaced to Google Cloud’s operational tooling.

Integrations with related services

• Cloud IAM: controls who can create/modify instances and who can view integrity-related information via APIs.
• Cloud Monitoring and alerting: monitor integrity status changes and alert (verify exact metric/log availability and names).
• Cloud Logging: can be used to centralize operational signals (verify what integrity-related events appear as logs in your environment).
• Organization Policy: can enforce guardrails across projects/folders/org (verify exact constraints that apply to Shielded VM).
• Compute Engine instance templates + MIG: apply Shielded VM consistently across fleets.
• IAP TCP forwarding (optional but recommended): reduces exposure by removing external IPs.

Dependency services

• Compute Engine itself (Shielded VM is a feature of Compute Engine VMs).
• Cloud APIs (Compute Engine API; optionally Monitoring/Logging/IAP depending on your workflow).

Security/authentication model

• IAM is the core authorization model for:
• creating/updating instances (compute.instances.create, compute.instances.update, etc.)
• reading instance configuration (compute.instances.get)
• retrieving Shielded VM identity/measurements (specific permissions; verify roles needed)
• Guest OS access (SSH/RDP) should be controlled using:
• OS Login, IAM-based access, and/or
• IAP TCP forwarding
• least-privilege firewall rules

Networking model

Shielded VM does not change VPC networking by itself. Your VM still uses standard Compute Engine networking: – VPC networks/subnets – firewall rules – routes – external IPs or Cloud NAT – private Google access, etc.

Monitoring/logging/governance considerations

• Decide what “action” means when integrity changes:
• alert-only
• auto-quarantine (remove from load balancer/MIG)
• auto-recreate from known-good template
• Ensure you can link integrity signals to:
• instance identity (labels, instance name, template version)
• deployment version (image digest, pipeline run ID)
• Standardize labeling/tagging and instance naming to make response fast.

Simple architecture diagram (Mermaid)

flowchart LR
  U[Admin/CI-CD] -->|Create/Update VM| CE[Compute Engine API]
  CE --> VM[Compute Engine VM\nShielded VM enabled]
  VM --> SB[Secure Boot]
  VM --> TPM[vTPM]
  VM --> IM[Integrity Monitoring]
  IM --> MON[Cloud Monitoring / Alerts]

Production-style architecture diagram (Mermaid)

flowchart TB
  subgraph Org[Google Cloud Organization]
    subgraph Folder[Folder / Landing Zone]
      subgraph Project[Project: prod-app]
        VPC[VPC + Subnets] --> MIG[MIG (multi-zone)\nInstance Template: Shielded VM ON]
        MIG --> ILB[Load Balancer / Backend Service]
        MIG --> VM1[VM instance (zone A)\nSecure Boot + vTPM + Integrity Monitoring]
        MIG --> VM2[VM instance (zone B)\nSecure Boot + vTPM + Integrity Monitoring]

        VM1 --> Ops[Ops Agent / Logs (optional)]
        VM2 --> Ops

        IM1[Integrity Monitoring signal] --> MON[Cloud Monitoring\nDashboards + Alerts]
        IM2[Integrity Monitoring signal] --> MON
      end
    end
  end

  Sec[Security Team] -->|Alert response| MON
  DevOps[DevOps/Pipeline] -->|Update template / roll out| MIG
  IAP[IAP TCP forwarding] -->|Admin access (no external IP)| VM1

8. Prerequisites

Accounts/projects/billing

• A Google Cloud project with billing enabled.
• Compute Engine enabled in the project.

Permissions / IAM roles

For the hands-on lab, a user typically needs: – Create and manage instances: – roles/compute.instanceAdmin.v1 (common for VM admin) – Set firewall rules (if creating an IAP SSH firewall rule): – roles/compute.securityAdmin or equivalent least-privilege permissions – If using IAP TCP forwarding: – roles/iap.tunnelResourceAccessor on the project (or specific instances)

Least privilege varies by organization; confirm with your IAM policies.

Tools

Choose one: – Google Cloud Console (browser) – gcloud CLI (recommended for repeatability): https://cloud.google.com/sdk/docs/install

Optional tools for verification inside Linux: – tpm2-tools package (installed via apt on Debian/Ubuntu)

Region/zone availability

Compute Engine is available in many regions/zones. Shielded VM feature availability can depend on: – machine type family – image/OS generation – platform support Always verify support for your chosen OS image and machine type in official docs.

Quotas/limits

• Compute Engine resource quotas (CPUs, instances, IP addresses)
• Firewall rule quotas
• API rate limits (rare for this lab)

See quotas: https://cloud.google.com/compute/quotas

Prerequisite services / APIs

• Compute Engine API: compute.googleapis.com
• Cloud Resource Manager API is commonly used in org setups (not required for this lab)
• If using IAP for SSH: IAP configuration may be required in your environment (verify): https://cloud.google.com/iap/docs/using-tcp-forwarding

9. Pricing / Cost

Shielded VM is a Compute Engine feature. In general, you pay for the underlying resources (VM, disks, networking), and Shielded VM itself is typically not priced as a separate line item. Verify current pricing behavior in the official pricing pages, because pricing policies can change.

Official pricing sources

• Compute Engine pricing: https://cloud.google.com/compute/all-pricing (or the current Compute Engine pricing page)
• Google Cloud Pricing Calculator: https://cloud.google.com/products/calculator

Pricing dimensions (what you actually pay for)

Even when Shielded VM features are enabled, costs usually come from: 1. Compute (vCPU and memory): per-second or per-hour depending on policy (Compute Engine billing granularity is documented by Google). 2. Persistent Disk / Hyperdisk: size (GB-month), performance tier, snapshots. 3. Network: – egress to the internet – cross-region traffic – load balancer data processing where applicable 4. External IP: may incur charges when reserved/unused; policies vary—verify current Compute Engine external IP pricing. 5. Operations suite (Monitoring/Logging): – additional log ingestion/storage beyond free allocations – metrics volume and retention 6. IAP itself is typically not billed like bandwidth, but using IAP may shift traffic patterns; verify if any related costs apply in your design.

Free tier considerations

Compute Engine has a free tier in some regions for certain machine types. This changes over time; verify current details in official docs: – https://cloud.google.com/free

Cost drivers specific to Shielded VM deployments

Shielded VM can introduce indirect costs: – Additional monitoring/alerting configuration and potential metric/log usage – Operational overhead responding to integrity alerts (people/time) – If Secure Boot blocks custom kernels/drivers, you might need: – changes in image build pipelines – additional staging/testing cycles

Hidden or indirect costs

• Incident response: integrity alerts are only useful if you have a runbook and staff coverage.
• Image pipeline: ensuring compatibility (UEFI, signed boot components) can add build complexity.

Network/data transfer implications

Shielded VM itself does not increase network transfer costs, but your access method can: – Using an external IP for SSH can increase risk and may affect costs if you reserve/static IPs. – Using IAP enables “no external IP” patterns and can simplify security posture.

How to optimize cost

• Use small machine types for test environments.
• Use no external IP + IAP to reduce exposure (cost-neutral, often a security win).
• Use instance schedules for non-production to stop VMs when not needed.
• Keep logs/metrics purposeful:
• alert on high-signal conditions
• avoid excessive debug logging in production

Example low-cost starter estimate (conceptual)

A minimal lab VM typically includes: – 1 small general-purpose VM (for example, E2 family) – a small boot disk (standard persistent disk) – minimal egress – limited log volume

Use the pricing calculator for your region and exact specs: – https://cloud.google.com/products/calculator

Example production cost considerations

For production fleets (MIG across multiple zones), expect cost drivers from: – total vCPU/RAM across the fleet – load balancers and egress traffic – larger/faster disks – observability volume and retention – higher availability (multi-zone) increasing baseline instance count

10. Step-by-Step Hands-On Tutorial

Objective

Create a Shielded VM-enabled Compute Engine instance with: – Secure Boot enabled – vTPM enabled – Integrity Monitoring enabled

Then: – verify the Shielded VM configuration – validate that the guest OS can see a TPM device (Linux) – retrieve Shielded VM identity/measurements using the Compute Engine API – clean up all resources safely

Lab Overview

You will: 1. Configure gcloud and enable required APIs. 2. Create a firewall rule for SSH via IAP (so the VM has no external IP). 3. Create a Debian VM with Shielded VM enabled. 4. SSH to the VM via IAP and verify Secure Boot/UEFI + TPM presence. 5. Call the Compute Engine API to retrieve Shielded VM identity/measurements. 6. Delete the VM and firewall rule.

This lab is designed to be low-cost, but any VM usage can incur charges. Use the pricing calculator and delete resources at the end.

---

Step 1: Set up your environment (project, region/zone, APIs)

1.1 Authenticate and select a project

gcloud auth login
gcloud config set project YOUR_PROJECT_ID

1.2 Choose a zone

Pick a zone close to you. Example:

gcloud config set compute/zone us-central1-a

1.3 Enable the Compute Engine API

gcloud services enable compute.googleapis.com

Expected outcome: Compute Engine API is enabled.

Verification:

gcloud services list --enabled --filter="name:compute.googleapis.com"

---

Step 2: Create an IAP SSH firewall rule (recommended)

This lab uses no external IP and connects using IAP TCP forwarding. That means you must allow SSH from IAP’s IP range to the VM.

2.1 Create a firewall rule to allow SSH from IAP to instances with a network tag

gcloud compute firewall-rules create allow-ssh-from-iap \
  --direction=INGRESS \
  --priority=1000 \
  --network=default \
  --action=ALLOW \
  --rules=tcp:22 \
  --source-ranges=35.235.240.0/20 \
  --target-tags=iap-ssh

Expected outcome: A firewall rule exists allowing inbound TCP 22 only from IAP to tagged VMs.

Verification:

gcloud compute firewall-rules describe allow-ssh-from-iap

If your organization doesn’t allow using the default network, create/select an approved VPC/subnet and apply the same pattern.

2.2 Ensure you have IAP permissions

You typically need: – roles/iap.tunnelResourceAccessor

If you can’t connect later, ask your admin to grant it (least privilege) or test with a project you control.

---

Step 3: Create a Shielded VM instance (Secure Boot + vTPM + Integrity Monitoring)

3.1 Create the VM

This example uses Debian. You can choose other supported images, but Secure Boot compatibility can vary—verify in the Shielded VM docs if you use a different OS.

INSTANCE_NAME=shielded-lab-vm

gcloud compute instances create "$INSTANCE_NAME" \
  --machine-type=e2-small \
  --image-family=debian-12 \
  --image-project=debian-cloud \
  --boot-disk-size=20GB \
  --no-address \
  --tags=iap-ssh \
  --shielded-secure-boot \
  --shielded-vtpm \
  --shielded-integrity-monitoring

Expected outcome: A VM is created with Shielded VM features enabled and no external IP.

Verification (configuration):

gcloud compute instances describe "$INSTANCE_NAME" \
  --format="yaml(name,zone,networkInterfaces[].networkIP,shieldedInstanceConfig)"

You should see shieldedInstanceConfig fields indicating Secure Boot, vTPM, and integrity monitoring are enabled.

3.2 Verify in the Cloud Console (optional but useful)

• Go to Compute Engine > VM instances
• Click the instance
• Look for Security / Shielded VM settings and integrity status

The exact console UI labels can change; use the Shielded VM docs if needed.

---

Step 4: Connect to the VM via IAP and verify TPM + UEFI/Secure Boot indicators

4.1 SSH using IAP TCP forwarding

gcloud compute ssh "$INSTANCE_NAME" --tunnel-through-iap

Expected outcome: You get a shell on the VM without using an external IP.

If prompted to create SSH keys, accept (gcloud manages user keys unless your org uses OS Login).

4.2 Verify UEFI presence (common indicator when Secure Boot is in play)

Inside the VM:

test -d /sys/firmware/efi && echo "UEFI detected" || echo "UEFI not detected"

Expected outcome: Typically UEFI detected for Secure Boot-capable instances.
If you see UEFI not detected, verify image compatibility and Shielded VM requirements in official docs.

4.3 Verify TPM device presence

ls -l /dev/tpm* || true
dmesg | grep -i tpm || true

Expected outcome: You should generally see a TPM device node (often /dev/tpm0) and kernel messages indicating a TPM device.

4.4 (Optional) Read TPM PCRs with tpm2-tools

Install tools:

sudo apt-get update
sudo apt-get install -y tpm2-tools

Read PCRs:

sudo tpm2_pcrread sha256:0,1,2,3,4,5,6,7

Expected outcome: You see PCR values. These are part of measured boot signals.

Exit SSH:

exit

---

Step 5: Retrieve Shielded VM identity/measurements via Compute Engine API

Compute Engine provides an API endpoint for Shielded VM identity/measurements.

5.1 Get an access token

ACCESS_TOKEN="$(gcloud auth print-access-token)"
echo "${#ACCESS_TOKEN}"

Expected outcome: The token length prints as a non-zero number.

5.2 Call the getShieldedInstanceIdentity endpoint

PROJECT_ID="$(gcloud config get-value project)"
ZONE="$(gcloud config get-value compute/zone)"

curl -sS -H "Authorization: Bearer ${ACCESS_TOKEN}" \
  "https://compute.googleapis.com/compute/v1/projects/${PROJECT_ID}/zones/${ZONE}/instances/${INSTANCE_NAME}/getShieldedInstanceIdentity" \
  | head -n 50

Expected outcome: JSON output (identity and measurement-related data). The exact JSON fields can evolve; rely on the official API reference for interpretation: – Compute Engine API reference: https://cloud.google.com/compute/docs/reference/rest/v1/instances/getShieldedInstanceIdentity (verify URL path in current docs if it changes)

Common permission issue: If you get 403 PERMISSION_DENIED, your account may be missing permissions to call that method. Ensure you have appropriate Compute Engine read permissions.

---

Validation

Use this checklist:

1. Instance created:

gcloud compute instances list --filter="name=${INSTANCE_NAME}"

2. Shielded VM configuration enabled:

gcloud compute instances describe "${INSTANCE_NAME}" \
  --format="yaml(shieldedInstanceConfig)"

3. SSH access via IAP works:

gcloud compute ssh "${INSTANCE_NAME}" --tunnel-through-iap --command="uname -a"

4. TPM device present (Linux):

gcloud compute ssh "${INSTANCE_NAME}" --tunnel-through-iap --command="ls -l /dev/tpm* || true"

5. API returns Shielded identity/measurements: The curl call returns JSON (Step 5).

---

Troubleshooting

Issue: gcloud compute ssh ... --tunnel-through-iap fails

Common causes and fixes: – Missing role: grant roles/iap.tunnelResourceAccessor – Firewall rule missing or wrong network/tag: – ensure the VM has the iap-ssh tag – ensure firewall rule targets iap-ssh – ensure source range is 35.235.240.0/20 – Organization policy blocks IAP/SSH patterns: – use approved access methods in your org

Issue: VM fails to boot after enabling Secure Boot

• This often indicates the boot chain is not compatible with Secure Boot (custom kernel/driver/image issue).
• Fix: stop the VM and disable Secure Boot (how you do this depends on current Compute Engine capabilities and UI/API behavior—verify in official docs). In production, prefer rebuilding the image to be compatible rather than weakening the baseline.

Issue: No /dev/tpm0 inside the VM

• Confirm vTPM is enabled in the instance configuration.
• Confirm the OS supports TPM devices.
• Try a different supported image and re-test.

Issue: 403 on getShieldedInstanceIdentity

• Ensure you have compute permissions to read that data. Try roles/compute.viewer at minimum, then add more only as necessary.
• Verify the API endpoint and method name in the current REST reference.

---

Cleanup

Delete the VM:

gcloud compute instances delete "${INSTANCE_NAME}" --quiet

Delete the firewall rule:

gcloud compute firewall-rules delete allow-ssh-from-iap --quiet

Expected outcome: No running VM instances from this lab and no extra firewall rule.

Verify:

gcloud compute instances list --filter="name=${INSTANCE_NAME}"
gcloud compute firewall-rules list --filter="name=allow-ssh-from-iap"

11. Best Practices

Architecture best practices

• Standardize Shielded VM in instance templates for MIG-based workloads.
• Prefer immutable infrastructure:
• treat VMs as replaceable
• roll forward by rebuilding images and replacing instances
• Use multi-zone designs for production services; Shielded VM is complementary to availability patterns.

IAM/security best practices

• Apply least privilege:
• separate roles for VM creation, network security, and monitoring access
• Restrict who can:
• disable Secure Boot
• create instances from unapproved images
• Use service accounts per workload and minimal OAuth scopes (where applicable; Compute Engine now emphasizes IAM over legacy scopes—verify current guidance).

Cost best practices

• For dev/test, use:
• smaller machine types
• schedules/automation to stop VMs
• Keep integrity monitoring signals actionable; avoid collecting data you won’t operationalize.

Performance best practices

• Test Secure Boot compatibility and boot times in staging.
• Validate kernel/module requirements early (especially for appliances or workloads with custom drivers).

Reliability best practices

• Treat integrity alerts as potential “node compromise” signals:
• remove node from service
• recreate from a known-good template/image
• Keep golden images versioned and reproducible (Packer + artifact registry patterns).

Operations best practices

• Create runbooks for:
• “Integrity status changed” events
• remediation steps (cordon/drain, replace, forensics)
• Use consistent labels:
• env=prod/dev
• app=...
• image_version=...
• owner_team=...

Governance/tagging/naming best practices

• Use consistent naming: app-env-role-zone-seq
• Enforce labels through policy or CI checks where possible.
• Track instance template versions and rollout history.

12. Security Considerations

Identity and access model

• Shielded VM is configured and queried via Compute Engine APIs, governed by Cloud IAM.
• Control access to:
• instance creation/modification
• instance metadata and APIs that expose identity/measurements
• Strongly consider:
• OS Login for SSH with IAM-based access management
• IAP TCP forwarding to remove external IP exposure

Encryption

• Data at rest: Compute Engine disks are encrypted by default; you can also use CMEK for additional control.
• Data in transit: standard TLS practices apply.
• Data in use (memory): Shielded VM does not encrypt RAM; for that, evaluate Confidential VM (separate feature with different tradeoffs).

Network exposure

• Shielded VM does not replace network controls:
• use least-privilege firewall rules
• avoid public SSH/RDP when possible
• prefer private subnets + NAT + IAP
• Segment workloads:
• separate admin, app, and data tiers with firewall rules and subnets

Secrets handling

• Store secrets in Secret Manager rather than instance metadata or disk.
• Use short-lived credentials and workload identity patterns where applicable (verify best fit for your runtime).

Audit/logging

• Enable and centralize:
• Cloud Audit Logs for Compute Engine API activity
• logs for IAM policy changes
• Treat changes to Shielded VM settings (like disabling Secure Boot) as high-signal events to review.

Compliance considerations

Shielded VM can support compliance objectives, but it is not a standalone compliance solution. Combine it with: – IAM governance – vulnerability management and patching – logging/monitoring controls – incident response procedures – image supply chain controls

Common security mistakes

• Enabling Shielded VM but leaving SSH open to the internet (0.0.0.0/0) with weak access controls.
• Treating integrity monitoring as “malware detection.” It’s primarily about boot integrity, not full runtime security.
• Allowing too many people to modify instance templates or disable secure settings without review.

Secure deployment recommendations

• Make Shielded VM your default for new VMs unless you have a tested exception.
• Use IAP + OS Login for admin access.
• Use MIGs and replace instances on integrity anomalies rather than trying to “repair” in place.

13. Limitations and Gotchas

Because Shielded VM operates at a low level, compatibility details matter. Key gotchas include:

• Secure Boot compatibility: custom kernels, unsigned boot components, and some specialized drivers can break boot. Validate in staging.
• OS/image support differences: not every OS image or configuration supports every Shielded VM feature the same way. Verify supported images in official docs.
• Integrity Monitoring scope: it focuses on boot integrity; it does not guarantee the OS is uncompromised after boot.
• Operational readiness: enabling integrity monitoring without a response plan can create alert fatigue or ignored signals.
• Change management: changing Shielded settings might require instance stop/start or recreation depending on what’s being changed—verify in current docs for each setting.
• Fleet rollouts: in MIGs, a template change affects new instances; existing instances may require rolling replacement.
• Observability costs: if integrity signals generate logs/metrics at scale, costs can rise (especially across large fleets).
• Multi-layer security confusion: Shielded VM is not the same as:
• network DDoS protection
• WAF
• runtime sandboxing
• memory encryption (Confidential VM)

14. Comparison with Alternatives

Shielded VM is best understood as boot integrity and measured boot protections for Compute Engine VMs. Alternatives often focus on different threat models.

Option	Best For	Strengths	Weaknesses	When to Choose
Google Cloud Shielded VM (Compute Engine)	Boot integrity hardening for VMs	Secure Boot + vTPM + integrity signals; integrates with Compute Engine	Secure Boot may break custom kernel/driver workflows; not runtime malware detection	Default baseline for VM fleets that can support Secure Boot
Standard Compute Engine VM (no Shielded features)	Maximum compatibility	Fewer boot constraints	Less protection against bootkits/rootkits	Only when Shielded VM is incompatible and risk is accepted/mitigated elsewhere
Google Cloud Confidential VM	Protecting data in use (memory encryption)	Stronger protection against memory inspection in certain threat models	Different goal than Shielded VM; may have compatibility/perf tradeoffs	Use when memory confidentiality is required; can be complementary (verify combinations in docs)
Google Cloud OS Login + IAP (access controls)	Reducing admin access risk	Strong IAM-governed access; reduces exposure	Does not protect boot chain	Use alongside Shielded VM; not a replacement
Microsoft Azure Trusted Launch	Azure VM boot integrity features	Similar concepts: Secure Boot + vTPM + monitoring	Different cloud ecosystem; migration overhead	Choose when on Azure and you need analogous protections
AWS UEFI Secure Boot + NitroTPM (where supported)	AWS VM boot integrity primitives	TPM-like and secure boot capabilities on supported instances	Feature availability varies by instance type/OS	Choose when on AWS and you need similar boot integrity building blocks
On-prem Secure Boot + Hardware TPM	Physical control and hardware-root trust	Hardware attestation options	Higher ops overhead; scaling and automation complexity	Choose when regulatory/latency constraints require on-prem and you can manage hardware

Notes: – Cross-cloud feature parity is not exact; verify current offerings and supported combinations in each cloud’s official docs.

15. Real-World Example

Enterprise example: regulated payment service on Compute Engine

• Problem: A payments platform runs VM-based services that process sensitive transactions. Security needs include platform integrity signals, strong access controls, and standardized hardening.
• Proposed architecture:
• Multi-zone MIG for stateless API tier
• Shielded VM enabled in instance templates (Secure Boot + vTPM + Integrity Monitoring)
• OS Login + IAP for admin access; no external IPs
• Centralized Cloud Audit Logs; Monitoring alerts for integrity anomalies
• Immutable image pipeline with signed/validated boot components (process depends on OS and enterprise tooling)
• Why Shielded VM was chosen:
• Directly addresses boot-chain tampering threats
• Operable at scale through templates/MIGs
• Provides measurable signals for monitoring and audit narratives
• Expected outcomes:
• Reduced likelihood of stealth persistence via bootkits
• Faster detection/triage if boot integrity changes
• More consistent baseline across teams and environments

Startup/small-team example: SaaS API backend with small ops team

• Problem: A small SaaS team runs a few VM services (API, background workers). They want better baseline security without hiring a large security staff.
• Proposed architecture:
• 1–2 MIGs (API and worker)
• Shielded VM enabled by default
• No external IPs; admin access via IAP
• Basic alerting on integrity status changes; automated instance recreation on suspicious signals
• Why Shielded VM was chosen:
• Low operational complexity compared to custom secure boot implementations
• Helps cover a serious class of attacks with minimal configuration changes
• Expected outcomes:
• Stronger security posture for customer trust and sales questionnaires
• Clearer operational response patterns (“replace instance from template”)

16. FAQ

1. Is Shielded VM a separate Google Cloud product?
   No. Shielded VM is a set of security features for Compute Engine VM instances.

2. Does Shielded VM protect against all malware?
   No. It primarily addresses boot integrity threats (bootkits/rootkits) and provides integrity signals. You still need OS hardening, patching, and endpoint detection strategies.

3. What’s the difference between Shielded VM and Confidential VM?
   Shielded VM focuses on secure/measured boot and integrity. Confidential VM focuses on encrypting data in memory (data in use). They solve different problems.

4. Does enabling Secure Boot guarantee my VM can’t be compromised?
   No. It raises the bar against boot-chain tampering but does not eliminate all attack paths (application vulnerabilities, credential theft, runtime exploits, etc.).

5. Will Secure Boot break my workload?
   It can if you require unsigned boot components, custom kernels, or incompatible drivers. Test in staging with your exact image and startup scripts.

6. Can I enable Shielded VM on existing instances?
   Some settings may be changeable, but behavior varies. In practice, many teams enable Shielded VM via recreating instances from updated templates. Verify current capabilities in official docs.

7. Do I pay extra for Shielded VM?
   Typically you pay for the underlying Compute Engine resources; Shielded VM itself is generally not billed separately. Verify current pricing on official pricing pages.

8. How do I monitor integrity changes at scale?
   Use fleet patterns: standardized labels, Monitoring dashboards/alerts, and automated remediation (remove from service and recreate). Verify where integrity signals surface in your current Google Cloud setup.

9. What IAM roles are needed to retrieve Shielded VM identity/measurements?
   It depends on the API method and your org’s policies. Start with least privilege and consult the Compute Engine IAM permissions for the specific method (for example, instances.getShieldedInstanceIdentity).

10. Can Shielded VM help with supply-chain security for VM images?
    Yes as part of a broader approach: Secure Boot can prevent unauthorized boot components from running, and measured boot signals can help validate expected boot states.

11. Does Shielded VM replace OS patching?
    No. Patch management remains essential.

12. Does Shielded VM change how networking works?
    No. VPC, firewall rules, and IP addressing behave normally.

13. Can I use Shielded VM with MIG rolling updates?
    Yes. Shielded VM settings belong in the instance template. Rolling updates then apply the template to new instances.

14. How do I validate vTPM is present in Linux?
    Common checks include /dev/tpm0, dmesg | grep -i tpm, and using tpm2-tools to read PCRs.

15. What should I do if integrity monitoring reports an issue?
    Treat it as a potential compromise or unauthorized change: – remove the instance from service – snapshot disks only if needed for forensics (be mindful of handling sensitive data) – recreate from a known-good template/image – investigate deployment changes and IAM activity

16. Is Shielded VM enough for high-security environments?
    It’s a strong baseline control, but high-security environments typically require layered controls: IAM, network segmentation, logging, vulnerability management, secrets management, and incident response processes.

17. Top Online Resources to Learn Shielded VM

Resource Type	Name	Why It Is Useful
Official documentation	Shielded VM documentation (Compute Engine) — https://cloud.google.com/compute/shielded-vm/docs	Primary source for capabilities, requirements, and configuration details
Official API reference	Compute Engine Instances REST reference — https://cloud.google.com/compute/docs/reference/rest/v1/instances	Authoritative reference for methods like getShieldedInstanceIdentity
Official pricing	Compute Engine pricing — https://cloud.google.com/compute/all-pricing	Understand what you’re billed for (VM, disks, network)
Official cost tool	Pricing Calculator — https://cloud.google.com/products/calculator	Estimate cost by region and configuration
Official security guidance	Google Cloud security documentation — https://cloud.google.com/security	Broader best practices and security architecture context
Official quotas	Compute Engine quotas — https://cloud.google.com/compute/quotas	Plan limits for instances, CPUs, firewall rules
Official access pattern	IAP TCP forwarding — https://cloud.google.com/iap/docs/using-tcp-forwarding	Recommended admin access pattern for VMs without external IPs
Official free tier	Google Cloud Free Program — https://cloud.google.com/free	Validate if your lab can run under free tier constraints
Architecture guidance	Google Cloud Architecture Center — https://cloud.google.com/architecture	Reference architectures and design patterns that complement Shielded VM
Community learning	Google Cloud Skills Boost — https://www.cloudskillsboost.google	Hands-on labs (availability of Shielded VM-specific labs varies; search the catalog)

18. Training and Certification Providers

Below are training providers (listed exactly as requested). Details like course depth, delivery, and schedules can change—check each website.

1. DevOpsSchool.com
   – Suitable audience: DevOps engineers, SREs, cloud engineers, platform teams
   – Likely learning focus: Google Cloud operations, DevOps practices, CI/CD, infrastructure automation, cloud security basics
   – Mode: check website
   – Website: https://www.devopsschool.com/

2. ScmGalaxy.com
   – Suitable audience: Developers, DevOps beginners to intermediate practitioners
   – Likely learning focus: SCM, DevOps tooling, CI/CD concepts, cloud fundamentals
   – Mode: check website
   – Website: https://www.scmgalaxy.com/

3. CLoudOpsNow.in
   – Suitable audience: Cloud operations engineers, SREs, infrastructure teams
   – Likely learning focus: Cloud operations, monitoring, reliability patterns, incident response practices
   – Mode: check website
   – Website: https://www.cloudopsnow.in/

4. SreSchool.com
   – Suitable audience: SREs, operations teams, platform engineers
   – Likely learning focus: SRE principles, monitoring/alerting, error budgets, reliability engineering
   – Mode: check website
   – Website: https://www.sreschool.com/

5. AiOpsSchool.com
   – Suitable audience: Ops teams, SREs, engineers exploring AIOps practices
   – Likely learning focus: Observability, automation, event correlation, operational analytics concepts
   – Mode: check website
   – Website: https://www.aiopsschool.com/

19. Top Trainers

These are trainer-related sites (listed exactly as requested). Treat them as training resources/platforms and verify offerings directly.

1. RajeshKumar.xyz
   – Likely specialization: DevOps/cloud training and guidance (verify current focus on website)
   – Suitable audience: Beginners to working professionals seeking practical DevOps/cloud skills
   – Website: https://rajeshkumar.xyz/

2. devopstrainer.in
   – Likely specialization: DevOps tools, CI/CD, cloud fundamentals (verify catalog)
   – Suitable audience: DevOps learners and engineers seeking hands-on coaching
   – Website: https://www.devopstrainer.in/

3. devopsfreelancer.com
   – Likely specialization: DevOps consulting/training resources (verify current services)
   – Suitable audience: Teams or individuals looking for project-based help or mentoring
   – Website: https://www.devopsfreelancer.com/

4. devopssupport.in
   – Likely specialization: DevOps support and training (verify current offerings)
   – Suitable audience: Engineers needing operational support or guided learning
   – Website: https://www.devopssupport.in/

20. Top Consulting Companies

These consulting companies are listed exactly as requested. Descriptions are kept neutral; verify services and references directly.

1. cotocus.com
   – Likely service area: Cloud/DevOps consulting and implementation (verify service catalog)
   – Where they may help: cloud migrations, CI/CD setup, operational readiness, security hardening
   – Consulting use case examples:

   • Implementing hardened VM baselines (Shielded VM + IAM + IAP patterns)
   • Building image pipelines and deployment automation
   • Website: https://cotocus.com/

2. DevOpsSchool.com
   – Likely service area: DevOps and cloud consulting/training services (verify consulting offerings)
   – Where they may help: platform engineering enablement, CI/CD, cloud governance, SRE practices
   – Consulting use case examples:

   • Rolling out Shielded VM across instance templates and MIGs
   • Designing monitoring/alerting runbooks for integrity signals
   • Website: https://www.devopsschool.com/

3. DEVOPSCONSULTING.IN
   – Likely service area: DevOps consulting services (verify current portfolio)
   – Where they may help: DevOps transformations, automation, cloud operations, security posture improvements
   – Consulting use case examples:

   • Establishing secure VM access patterns (OS Login/IAP) and hardened compute templates
   • Creating governance checks in CI to prevent insecure VM configurations
   • Website: https://www.devopsconsulting.in/

21. Career and Learning Roadmap

What to learn before Shielded VM

To use Shielded VM effectively, you should understand: – Compute Engine basics: instances, disks, images, instance templates, MIGs – VPC networking: subnets, firewall rules, routes, NAT – IAM fundamentals: roles, service accounts, least privilege – Linux boot basics (helpful): bootloader, kernel, modules – Basic security operations: logging, monitoring, alerting

What to learn after Shielded VM

To build a robust compute security posture: – Confidential VM (data-in-use protection) if needed – OS hardening benchmarks (CIS-style guidance) and patch automation – Golden image pipelines (Packer) and artifact provenance – Organization policy guardrails and policy-as-code – Incident response for cloud workloads (forensics readiness, isolation, rebuild strategies) – Zero Trust access patterns (IAP, BeyondCorp Enterprise if applicable)

Job roles that use it

• Cloud/solutions architect
• Platform engineer
• DevOps engineer
• Site Reliability Engineer (SRE)
• Cloud security engineer
• Security operations / detection engineer (integrating integrity signals into triage)

Certification path (Google Cloud)

Shielded VM is a feature within Compute Engine/security architecture. Relevant Google Cloud certifications (verify current names/availability): – Associate Cloud Engineer – Professional Cloud Architect – Professional Cloud Security Engineer – Professional DevOps Engineer

Project ideas for practice

• Build a MIG-based web service where every instance is Shielded VM-enabled.
• Add a CI check that validates instance templates have Shielded VM enabled (using gcloud + policy checks).
• Create a runbook and automation to recreate instances if integrity status changes (start with alert-only).
• Build a simple attestation verifier prototype using getShieldedInstanceIdentity (carefully handle baselines and false positives).

22. Glossary

• Compute Engine: Google Cloud’s IaaS service for running virtual machines.
• Shielded VM: Compute Engine security features to protect against boot-level compromise (Secure Boot, vTPM, Integrity Monitoring).
• Secure Boot: A mechanism that verifies boot components are signed/trusted before executing.
• UEFI: Modern firmware interface used by Secure Boot-capable systems.
• TPM: Trusted Platform Module; a secure cryptoprocessor for key storage and integrity measurements.
• vTPM: Virtual TPM device exposed to a VM.
• PCR (Platform Configuration Register): TPM registers used to store cryptographic measurements of software/components loaded during boot.
• Measured Boot: Process of hashing/measuring boot components and extending values into TPM PCRs.
• Integrity Monitoring: Capability to surface VM boot integrity signals for monitoring/alerting.
• MIG (Managed Instance Group): Compute Engine feature that manages identical instances from a template with autoscaling and rolling updates.
• Instance template: A reusable VM configuration used by MIGs.
• IAP TCP forwarding: Secure access method for VMs without external IP addresses.
• OS Login: Google Cloud IAM-based SSH access management for Compute Engine.
• CMEK: Customer-managed encryption keys, used to control encryption keys for certain resources like disks.
• Confidential VM: Compute Engine capability focused on encrypting data in memory (data in use).

23. Summary

Shielded VM is a Compute Engine security feature in Google Cloud that helps protect VMs from boot-level compromise using Secure Boot, vTPM, and Integrity Monitoring. It matters because bootkits and rootkits can persist stealthily and evade many traditional controls.

In the Google Cloud Compute ecosystem, Shielded VM fits as a secure-by-default baseline for VM fleets—especially when paired with strong IAM, private networking patterns (like IAP without external IPs), and standardized instance templates.

Cost-wise, Shielded VM is generally part of your Compute Engine usage (verify current pricing), but you should plan for indirect costs such as observability volume and operational response.

Use Shielded VM when you want stronger platform integrity for VM workloads and can validate Secure Boot compatibility. Next, deepen your capabilities by standardizing Shielded VM in templates/MIGs, integrating integrity signals into alerting/runbooks, and evaluating complementary controls like OS Login, IAP, and Confidential VM where appropriate.