aboutsummaryrefslogtreecommitdiff
path: root/docs/glossary.rst
blob: 73e91aa749dfb83675e94f78a84b97ca0b9f4fe5 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
###################################
Glossary of terms and abbreviations
###################################

************
TF-M related
************
.. glossary::

    Application RoT
    Application Root of Trust
        `PSA term`_. The security domain in which additional security services
        are implemented.

    HAL
    Hardware Abstraction Layer
        Interface to abstract hardware-oriented operations and provides a set of
        APIs to the upper layers.

    RoT
    Root of Trust
        `PSA term`_. This is the minimal set of software, hardware and data that
        is implicitly trusted in the platform — there is no software or hardware
        at a deeper level that can verify that the Root of Trust is authentic
        and unmodified.

    RoT Service
    Root of Trust Service.
        `PSA term`_. A set of related security operations that are implemented
        in a Secure Partition.

    NSPE : TF-M related
    Non Secure Processing Enviroment
        `PSA term`_. In TF-M this means non secure domain typically running an
        OS using services provided by TF-M.

    PSA
        `PSA term`_. Platform Security Architecture.

    PSA-FF
        `PSA term`_. Platform Security Architecture Firmware Framework.

    PSA-FF-M
        `PSA term`_. Platform Security Architecture Firmware Framework for M.

    PSA RoT
    PSA Root of Trust
        `PSA term`_. This defines the most trusted security domain within a PSA
        system.

    SFN : TF-M related
    Secure Function
        The function entry to a secure service. Multiple SFN per SS are
        permitted.

    SP : TF-M related
    Secure Partition
        A logical container for secure services.

    SPE : TF-M related
    Secure Processing Environment
        `PSA term`_. In TF-M this means the secure domain protected by TF-M.

    SPM : TF-M related
    Secure Partition Manager
        The TF-M component responsible for enumeration, management and isolation
        of multiple Secure Partitions within the TEE.

    SPRT : TF-M related
    Secure Partition Runtime
        The TF-M component responsible for Secure Partition runtime
        functionalities.

    SPRTL : TF-M related
    Secure Partition Runtime Library
        A library contains the SPRT code and data.

    SS : TF-M related
    Secure Service
        A component within the TEE that is atomic from a security/trust point of
        view, i.e. which is viewed as a single entity from a TF-M point of view.

    PS : TF-M related
    Protected Storage
        Protected storage service provided by TF-M.

    ITS : TF-M related
    Internal Trusted Storage
        Internal Trusted Storage service provided by TF-M.

    TFM
    TF-M
    Trusted Firmware-M
    Trusted Firmware for M-class
        ARM TF-M provides a reference implementation of secure world software
        for ARMv8-M.

    TBSA-M
    Trusted Base System Architecture for Armv6-M, Armv7-M and Armv8-M
        TBSA term. See `Trusted Base System Architecture for Armv6-M, Armv7-M
        and Armv8-M`_

****************
SSE-200 platform
****************
.. glossary::

    MPC : SSE-200 platform
    Memory Protection Controller
        Bus slave-side security controller for memory regions.

    PPC : SSE-200 platform
    Peripheral Protection Controller
        Bus slave-side security controller for peripheral access.

************
v8M-specific
************
.. glossary::

    S/NS : v8M-specific
    Secure/Non-secure
        The separation provided by TrustZone hardware components in the system.

    SAU : v8M-specific
    Secure Attribution Unit
        Hardware component providing isolation between Secure, Non-secure
        Callable and Non-secure addresses.

***************
M-class Generic
***************
.. glossary::

    AAPCS
    ARM Architecture Procedure Call Standard
        The AAPCS defines how subroutines can be separately written, separately
        compiled, and separately assembled to work together. It describes a
        contract between a calling routine and a called routine

    MPU : M-class Generic
    Memory Protection Unit
        Hardware component providing privilege control.

    SVC
    SuperVisor Call
        ARMv7M assembly instruction to call a privileged handler function

*********
Reference
*********

| `PSA Firmware_Framework for M`_

.. _PSA Firmware_Framework for M: https://pages.arm.com/psa-resources-ff.html

.. _PSA term: `PSA Firmware_Framework for M`_

| `Trusted Base System Architecture for Armv6-M, Armv7-M and Armv8-M`_

.. _Trusted Base System Architecture for Armv6-M, Armv7-M and Armv8-M: https://pages.arm.com/psa-resources-tbsa-m.html

--------------

*Copyright (c) 2017-2020, Arm Limited. All rights reserved.*