Design Documents

• Secure Boot
  • BL1 Immutable bootloader
  • Rollback Protection
  • HW Key integration
  • Second stage bootloader in TF-M
  • Integration with TF-M
  • Firmware upgrade operation
  • Multiple image boot
  • Signature algorithms
  • Build time configuration
  • Signing the images manually
  • Testing firmware upgrade
  • Integration with Firmware Update service
• Multi CPU
  • Booting a multi-cpu
  • Hybrid Platform Topology
  • Mailbox Design
  • Memory Access Check
  • SPE - NSPE communication
• Secure Services
  • Secure Partition Manager
  • Secure Partition RTL
  • Inter-Process Communication
  • Stateless Services
  • Service Signing
  • Crypto
  • Symmetric Initial Attestation
  • Internal Trusted Storage
  • Firmware Update
  • PS Key Management
• Software Design
  • Code Sharing
  • Hardware Abstraction Layer
  • Cooperative Scheduling
  • Code Templates
  • Implicit Typecasting

• Isolation Rules
• Builtin Keys
• Logging system
• Physical Attack Mitigation
• MM-IOVEC High Isol Levels

---

Copyright (c) 2021, Arm Limited. All rights reserved.