Architecture

• Core
  • Interrupt handling
  • Notifications
  • Memory objects
  • MMU
  • Pager
  • Stacks
  • Shared Memory
  • SMC
  • Thread handling
• Crypto
  • Overview
  • [1] The TEE Cryptographic Operations API
  • [2] The crypto services
  • [3] crypto_*()
  • Public/private key format
  • [4] LibTomCrypt
  • Add a new software based crypto implementation
  • [5] Support for crypto IC
  • NXP SE05X Family of Secure Elements
• Device Tree
  • Secure and Non-Secure Device Trees
  • Generic boot and DTBs
  • Early boot external device tree
  • Early boot device tree overlay
  • Embedded Secure Device Tree
• File structure
  • Top level directories
  • core/
  • core/arch/arm/
  • lib/
  • ta/
• GlobalPlatform API
  • Introduction
  • TEE Client API
  • TEE Internal Core API
  • Extensions
• Libraries
  • libutee
  • libmpa
• Porting guidelines
  • Add a new platform
  • Hardware Unique Key
  • Secure Clock
  • Root and Chain of Trust
  • Hardware Crypto IP
  • Random Number Generator
  • Power Management / PSCI
  • Memory firewalls / TZASC
  • Trusted Application private/public keypair
  • Platform ports
• Secure boot
  • Armv8-A - Using the authentication framework in TF-A
  • Armv7-A systems
• Secure storage
  • Background
  • REE FS Secure Storage
  • Key Manager
  • Hash Tree
  • Atomic Operation
  • RPMB Secure Storage
  • Important caveats
  • References
• Subkeys
• Trusted Applications
  • Pseudo Trusted Applications
  • User Mode Trusted Applications
  • TA locations
  • Loading and preparing TA for execution
  • TA Properties
• Virtualization
  • Configuration
  • Requirements for hypervisor
  • Limitations
• SPMC
  • SPMC Responsibilities
  • Secure Partitions
  • Secure Partition formats
  • SPMC Program Flow
  • FF-A compliance
  • Configuration
• Arm Security Extensions
  • Branch Target Identification
• Platform documentation
  • NXP