Trusted launch is a seamless way to improve the security of generation 2 VMs. It protects against advanced and persistent attack techniques by combining technologies that can be independently enabled like secure boot and virtualized version of trusted platform module (vTPM).
Trusted launch support for VMs using Ephemeral OS disks is availabe in all Azure public regions. With this, customers using Ephemeral OS disk for VMs will benefit from the additional security offered by trusted launch.