Template:ArticleMainWriter
Template:ArticleApprovedVersion
1. Article purpose[edit source]
The purpose of this article is to:
- briefly introduce the ETZPC peripheral and its main features
- indicate the level of security supported by this hardware block
- explain how it can be allocated to the three runtime contexts and linked to the corresponding software components
- explain, when necessary, how to configure the ETZPC peripheral.
2. Peripheral overview[edit source]
The ETZPC peripheral is used to configure TrustZone security in a SoC having bus masters and slaves with programmable-security attributes (securable resources) such as:
- on-chip RAM/ROM with programmable secure region size
- AHB and APB peripherals to be made secure
- AHB masters to be granted secure rights
2.1. Features[edit source]
Refer to the STM32MP15 reference manuals for the complete list of features, and to the software components, introduced below, to see which features are implemented.
2.2. Security support[edit source]
The ETZPC is a secure peripheral.
3. Peripheral usage and associated software[edit source]
3.1. Boot time[edit source]
The ETZPC is configured at boot time to setup the platform security.
3.2. Runtime[edit source]
3.2.1. Overview[edit source]
The ETZPC is a system peripheral and is controlled by the Arm® Cortex®-A7 secure.
3.2.2. Software frameworks[edit source]
Internal peripherals software table template
| Security | ETZPC | OP-TEE ETZPC driver | U-Boot | Resource Manager | A7 Non secure read only access to configuration. (U-Boot) is cleaning the Linux device tree. Resource Manager utility has read only access to configuration. |- |}
3.2.3. Peripheral configuration[edit source]
The configuration is applied by the firmware running in a secure context.
This configuration is done in TF-A or OP-TEE, through device tree (see ETZPC device tree configuration).
3.2.4. Peripheral assignment[edit source]
Internal peripherals assignment table template
| rowspan="1" | Security | rowspan="1" | ETZPC | ETZPC | ✓ | ✓ | ✓ | |-
|}
4. How to go further[edit source]
The ETZPC is an STMicroelectronics extension of the Arm® peripheral: TrustZone Protection Controller[1]