LVC21F-311 Overview of Firmware Architecture for Arm CCA

Session Abstract

Level: Intermediate This talk aims to introduce the firmware architecture for Arm Confidential Compute Architecture (Arm CCA) involving the 2 firmware components: Realm management Monitor and the Monitor (Trusted Firmware-A). Arm CCA introduces the Realm world which is isolated from both Secure and Non Secure worlds. “Realms” are dynamically created by the Hypervisor and this is achieved via the Realm management Interface (RMI) interacting with the RMM. Trusted Firmware – A (TF-A) is the reference monitor firmware implementation and is responsible for booting the Trusted Compute Base (TCB) and enforcing isolation between the Non Secure, Secure and Realm worlds. The talk will give an overview of the implementation in TF-A for Arm CCA and will cover topics like : * Boot flow in Arm CCA systems * 4 world management * Interaction with Secure world * Implications for Secure Partition Manager (SPM) due to introduction of Arm CCA.

Session Speakers

Soby Mathew

ARM, Tech Lead, Trusted Firmware-A (ARM)

Soby Mathew is one of the maintainers of Trusted-Firmware-A (TF-A) open governance project on Trustedfirmware.org and has been involved with the project since 2014. Currently he is leading the Architecture and development for Arm CCA within Trusted Firmware-A.

Dan Handley

Arm OSS firmware architect

Arm OSS firmware architect, in particular for A-profile security technologies like Arm CCA, Trusted-Firmware-A, Hafnium and platform security. TrustedFirmware.org TSC representative.

Level: Intermediate This talk aims to introduce the firmware architecture for Arm Confidential Compute Architecture (Arm CCA) involving the 2 firmware components: Realm management Monitor and the Monitor (Trusted Firmware-A). Arm CCA introduces the Realm world which is isolated from both Secure and Non Secure worlds. “Realms” are dynamically created by the Hypervisor and this is achieved via the Realm management Interface (RMI) interacting with the RMM.

Trusted Firmware – A (TF-A) is the reference monitor firmware implementation and is responsible for booting the Trusted Compute Base (TCB) and enforcing isolation between the Non Secure, Secure and Realm worlds. The talk will give an overview of the implementation in TF-A for Arm CCA and will cover topics like :

  • Boot flow in Arm CCA systems
  • 4 world management
  • Interaction with Secure world
  • Implications for Secure Partition Manager (SPM) due to introduction of Arm CCA.
comments powered by Disqus

Other Posts

Sign up. Receive Updates. Stay informed.

Sign up to our mailing list to receive updates on the latest Linaro Connect news!