Home > On-Demand Archives > Theatre Talks >

Enabling TrustZone Without the Complications

Aaron Bauch - Watch Now - EOC 2023 - Duration: 47:45

Enabling TrustZone Without the Complications
Aaron Bauch

Arm's TrustZone technology, available on Arm application processors for many years, was released for microcontroller cores a few years ago and is now becoming common in the leading microcontroller vendor product lines. While TrustZone provides some very valuable and relatively simple technologies for securing embedded systems, once enabled, it can be significantly difficult to set up and manage. This talk will focus on what TrustZone is, and how IAR's security add-on tools can enable a secure boot based system using TrustZone to be implemented simply while utilizing all of the features afforded by the new technology.

italicssurround text with
boldsurround text with
**two asterisks**
or just a bare URL
surround text with
strikethroughsurround text with
~~two tilde characters~~
prefix with

Score: 0 | 1 year ago | 1 reply

Very well done class, quite informative and clear. Thanks Aaron.

Score: 0 | 1 year ago | no reply

Thank you Jean! I'm glad you found it useful.

Score: 0 | 1 year ago | 1 reply

Maybe I missed something, but I think the part where trust zone is actually enabled is missing.
While a demo is part of this recording, it goes into great lengths explaining the demo application (LED blinking, PWM controls, button, tx threads) but is not showing what setting up and managing the TZ looks like.
On the upside I now have an idea of what TZ is about and when I might need it.

Score: 0 | 1 year ago | no reply

Hello and thank you for your comment. You are correct I left out both just turning on TrustZone as well as the provisioning of the target system with the Secure Boot Manager. Both are quite simple and done by a team member in provisioning the debug targets before a developer starts the process of developing their system. However we would be happy to demonstrate that as well if you are interested in a further demo of the capabilities. In preparing this session, due to time constraints, I decided to focus on the view that a developer would see when debugging their code to keep the time reasonable (although it was probably one of the longer theater sessions). But please send an email to FAE@IAR.com if you would like to discuss further.