9475778958b664c7d1f815c49e507dcf35a8e1be - TS/trusted-services

commit	9475778958b664c7d1f815c49e507dcf35a8e1be	[log] [tgz]
author	Gabor Toth <gabor.toth2@arm.com>	Thu Nov 07 15:35:11 2024 +0100
committer	György Szing <gyorgy.szing@arm.com>	Tue Mar 11 11:21:24 2025 +0100
tree	45d400b12ee1a4bc55343aa27585929ade8da219
parent	821cf322acaea2a6f59ed44c46b92f65fbad5ca7 [diff]

Add Encrypted Block Store

Encryption can effectively mitigate threats associated with
Block Storage, where data at rest or data in transit protection
is not inherently provided.
This change adds an AES-CBC with ESSIV encryption component, which
can be added as an extra layer.
The encryption scheme of this version is limited and uses a
hardcoded trust anchor.

Change-Id: Idaa5c1b7cbed992dedd09b4e1cdc9eedf541bfb9
Signed-off-by: Gabor Toth <gabor.toth2@arm.com>

components/service/block_storage/block_store/encrypted/component.cmake[Added - diff]
components/service/block_storage/block_store/encrypted/encrypted_block_store.c[Added - diff]
components/service/block_storage/block_store/encrypted/encrypted_block_store.h[Added - diff]

3 files changed

tree: 45d400b12ee1a4bc55343aa27585929ade8da219

components/
deployments/
docs/
environments/
external/
platform/
protocols/
tools/
.checkpatch
.clang-format
.cppcheck
.editorconfig
.gitignore
.readthedocs.yaml
dco.txt
license.rst
readme.rst
requirements.txt
version.txt