Change Log & Release Notes
This document contains a summary of the new features, changes, fixes and known issues in each release of Trusted Services.
The first tagged release of the project.
The project supports the following services:
Services may be accessed using client components that implement “Psacertified v1.0 APIs”. The project includes deployments that integrate PSA API certification tests with API clients to facilitate end-to-end PSA certification testing.
Crypto key store partitioning by client is not yet supported.
Discovery support is only currently integrated into the Crypto service provider. In case of services not supporting this feature yet, communication parameters (e.g. maximum buffer size) and supported feature set needs to be hardcode to the service provider and service client.
Supported Trusted Environments
In the default configuration each service is deployed to a dedicated FF-A Secure Partition and executes isolated. Service implementations are platform, trusted environment and service deployment agonistic. With appropriate enablement work services can be enabled to work in any combination of these.
The reference integration uses the SPMC implemented in OP-TEE OS to manage TS SPs. This release supports OP-TEE v3.19.
Supported Integration Systems
The reference solution uses the OP-TEE integration methodology. This relies on the google repo tool for high-level dependency management and a set of makefiles to capture the build configuration information. For details please refer to OP-TEE git repo documentation.
The project is officially enabled in Yocto meta-arm.
Supported Target Platforms
The only reference platform supported by this release is the AEM FVP build using the OP-TEE integration method.
Non-volatile backend secure storage is not currently provided.
Please find the Test Report covering this release in the tf.org wiki.
Copyright (c) 2020-2022, Arm Limited and Contributors. All rights reserved.