Glossary

This glossary provides definitions for terms and abbreviations used in the Trusted Services documentation.

You can find additional definitions in the Arm Glossary.

ACLE

Arm C language extensions

C identifier like string

A name which uses only alphanumeric characters and underscores and the first character is not a digit.

FF-A

Firmware Framework for A

LCS

Linux Coding Style

Logical SP

A Secure Partition which executes a software image isolated buy without physical address space isolation.

Physical SP

A Secure Partition which executes a software image in and isolated physical address space.

PSA

Platforn Security Arhitecture

Secure Enclave

An isolated hardware subsystem focusing on security related operations. The subsystem may include hardware peripherals and one or more processing elements. As an example see the Arm SSE-700 subsystem.

Secure Partition

Secure Partition is a compartment to execute a software image isolated from other images. Isolation can be logical or physical based on if physical address range isolation is involved or not. See Physical SP and Logical SP.

An SP may host a single or multiple services.

Secure Partition Manager

A component responsible for creating and managing the physical isolation boundary of an SP in the SWd. It is built from two sub-components the Secure Partition Manager Dispatcher and the Secure Partition Manager Core.

Secure Partition Manager Core

A component responsible for SP initialization and isolation at boot-time, inter partition isolation at run-time, inter-partition communication at run-time.

Secure Partition Manager Dispatcher

The SPM component responsible for SPMC initialization boot-time, and forwarding FF-A calls run-time between SPs and between SPs and the SPMC.

Secure Processing Environment

An isolated environment to execute software images backed by a specific set of hardware and arm architecture features. The aim of isolation os to protect sensitive workloads and their assets.

SP

see Secure Partition

SPE

See Secure Processing Environment.

SPM

See Secure Partition Manager.

TEE

Trusted Execution Environment. An SPE implemented using TrustZone.

TF-A

Trusted Firmware-A

TrustZone

Hardware assisted isolation technology built into arm CPUs. See TrustZone for Cortex-A.

TS

Trusted Services


Copyright (c) 2020-2022, Arm Limited and Contributors. All rights reserved.

SPDX-License-Identifier: BSD-3-Clause