LVC21-305: OP-TEE as a Secure Partition running on SPM using ARMv8.4-A SEL2 feature

Session Abstract

The ARMv8.4‑A architecture introduces the Secure EL2 extension (FEAT_SEL2) that provides virtualisation in the Secure world. This feature when used by the Secure Partition Manager (SPM) at SEL2 provides isolation of firmware components from multiple vendors like silicon, OEM, Trusted OS vendors. This session will cover the use-case of running OP-TEE as a Secure Partition (SP) in a virtualised environment created by the Secure Partition Manager (SPM) in a platform with SEL2 support. We will cover the Firmware Framework for Arm A-profile processors (FF-A), a standardised communication interface between various components in the secure world and normal world. A brief overview of communication flow between OP-TEE driver, EL3 SPM Dispatcher (SPMD), SEL2 SPM Core (SPMC) and the OPTEE-OS. We will finally cover the current status of work and future plans.

Session Speakers

Arunachalam Ganapathy

Arm (Staff Software Engineer, Arm)

Arunachalam works as software engineer at Arm. He has work experience in system software related to kernel development (including AIX and Linux), Virtualization and Storage subsystem.

Jens Wiklander

Linaro (Linaro Security Working Group)

Senior Software Engineer in Linaro Security Working Group

The ARMv8.4‑A architecture introduces the Secure EL2 extension (FEAT_SEL2) that provides virtualisation in the Secure world. This feature when used by the Secure Partition Manager (SPM) at SEL2 provides isolation of firmware components from multiple vendors like silicon, OEM, Trusted OS vendors.

This session will cover the use-case of running OP-TEE as a Secure Partition (SP) in a virtualised environment created by the Secure Partition Manager (SPM) in a platform with SEL2 support. We will cover the Firmware Framework for Arm A-profile processors (FF-A), a standardised communication interface between various components in the secure world and normal world. A brief overview of communication flow between OP-TEE driver, EL3 SPM Dispatcher (SPMD), SEL2 SPM Core (SPMC) and the OPTEE-OS. We will finally cover the current status of work and future plans.

comments powered by Disqus

Other Posts

Sign up. Receive Updates. Stay informed.

Sign up to our mailing list to receive updates on the latest Linaro Connect news!