Runtime Security Engine (RSE)

Previously known as Runtime Security Subsystem (RSS).

• RSE introduction
• DMA Initial Command Sequence (ICS) introduction
• RSE integration guide
• SFCP communication design
• RSE hardware key management
• RSE provisioning
• RSE routing table
• RSE ROM releases
• RSE Platforms
• RSE ROM unit test guidelines
• RSE staged boot
• RSE BL1_2 image binding
• RSE firmware update metadata
• RSE BL2 image binding
• RSE Cryptography
• BL1
• BL2
• Runtime Crypto partition
• RSE Cryptographic hardware
• Security strength requirements
• Side-channel countermeasures
• BL1 crypto API
• cc3xx low_level_driver API

RSE also includes the following extra partitions:

• Authenticated Debug Access Control (ADAC)

• Measured boot partition

• Delegated attestation partition

• DICE Protection Environment partition

---

SPDX-FileCopyrightText: Copyright The TrustedFirmware-M Contributors