TF-M overview

Revision as of 01:56, 1 December 2023 by Registered User
Applicable for STM32MP25x lines

1. Overview of the Trusted Firmware-M project

Trusted Firmware-M (TF-M) is an open source project manage by TrustedFirmware group[1].
The software environment is design to run in the Secure Processing Environment (SPE) of ARMv8-M microcontrollers following the PSA Certified guidelines[2]

It offers secure services to the non secure environment :

  • Initial attestation
  • Crypto services
  • Internal trusted storage
  • Protected storage

1.1. License

TF-M is delivered under a BSD-3-Clause style license and can run secure partition without restriction on their licensing model. It also includes different sub-projects with their dedicated license[3].


1.2. Architecture overview

1.3. Software profile

TF-M defines different profile depending on the security level targeted:

  • Small profile
  • ARot-IOT profile
  • Medium profile
  • Large

Each profile define a subset of services embed in the TF-M software.

Info white.png Information
table to do


  1. https://www.trustedfirmware.org/projects/tf-m
  2. https://www.psacertified.org
  3. https://tf-m-user-guide.trustedfirmware.org/introduction/readme.html
Retrieved from "https://wiki.st.com/stm32mpu/index.php?title=TF-M_overview&oldid=98291"