docs/glossary.rst

###################################
Glossary of terms and abbreviations
###################################

************
TF-M related
************
.. glossary::

    Application RoT
    Application Root of Trust
        `PSA term`_. The security domain in which additional security services
        are implemented.

    HAL
    Hardware Abstraction Layer
        Interface to abstract hardware-oriented operations and provides a set of
        APIs to the upper layers.

    RoT
    Root of Trust
        `PSA term`_. This is the minimal set of software, hardware and data that
        is implicitly trusted in the platform — there is no software or hardware
        at a deeper level that can verify that the Root of Trust is authentic
        and unmodified.

    RoT Service
    Root of Trust Service.
        `PSA term`_. A set of related security operations that are implemented
        in a Secure Partition.

    NSPE : TF-M related
    Non Secure Processing Enviroment
        `PSA term`_. In TF-M this means non secure domain typically running an
        OS using services provided by TF-M.

    PSA
        `PSA term`_. Platform Security Architecture.

    PSA-FF
        `PSA term`_. Platform Security Architecture Firmware Framework.

    PSA-FF-M
        `PSA term`_. Platform Security Architecture Firmware Framework for M.

    PSA RoT
    PSA Root of Trust
        `PSA term`_. This defines the most trusted security domain within a PSA
        system.

    SFN : TF-M related
    Secure Function
        The function entry to a secure service. Multiple SFN per SS are
        permitted.

    SP : TF-M related
    Secure Partition
        A logical container for secure services.

    SPE : TF-M related
    Secure Processing Environment
        `PSA term`_. In TF-M this means the secure domain protected by TF-M.

    SPM : TF-M related
    Secure Partition Manager
        The TF-M component responsible for enumeration, management and isolation
        of multiple Secure Partitions within the TEE.

    SPRT : TF-M related
    Secure Partition Runtime
        The TF-M component responsible for Secure Partition runtime
        functionalities.

    SPRTL : TF-M related
    Secure Partition Runtime Library
        A library contains the SPRT code and data.

    SS : TF-M related
    Secure Service
        A component within the TEE that is atomic from a security/trust point of
        view, i.e. which is viewed as a single entity from a TF-M point of view.

    PS : TF-M related
    Protected Storage
        Protected storage service provided by TF-M.

    ITS : TF-M related
    Internal Trusted Storage
        Internal Trusted Storage service provided by TF-M.

    TFM
    TF-M
    Trusted Firmware-M
    Trusted Firmware for M-class
        ARM TF-M provides a reference implementation of secure world software
        for ARMv8-M.

    TBSA-M
    Trusted Base System Architecture for Armv6-M, Armv7-M and Armv8-M
        TBSA term. See `Trusted Base System Architecture for Armv6-M, Armv7-M
        and Armv8-M`_

****************
SSE-200 platform
****************
.. glossary::

    MPC : SSE-200 platform
    Memory Protection Controller
        Bus slave-side security controller for memory regions.

    PPC : SSE-200 platform
    Peripheral Protection Controller
        Bus slave-side security controller for peripheral access.

************
v8M-specific
************
.. glossary::

    S/NS : v8M-specific
    Secure/Non-secure
        The separation provided by TrustZone hardware components in the system.

    SAU : v8M-specific
    Secure Attribution Unit
        Hardware component providing isolation between Secure, Non-secure
        Callable and Non-secure addresses.

***************
M-class Generic
***************
.. glossary::

    AAPCS
    ARM Architecture Procedure Call Standard
        The AAPCS defines how subroutines can be separately written, separately
        compiled, and separately assembled to work together. It describes a
        contract between a calling routine and a called routine

    MPU : M-class Generic
    Memory Protection Unit
        Hardware component providing privilege control.

    SVC
    SuperVisor Call
        ARMv7M assembly instruction to call a privileged handler function

*********
Reference
*********

| `PSA Firmware_Framework for M`_

.. _PSA Firmware_Framework for M: https://pages.arm.com/psa-resources-ff.html

.. _PSA term: `PSA Firmware_Framework for M`_

| `Trusted Base System Architecture for Armv6-M, Armv7-M and Armv8-M`_

.. _Trusted Base System Architecture for Armv6-M, Armv7-M and Armv8-M: https://pages.arm.com/psa-resources-tbsa-m.html

--------------

*Copyright (c) 2017-2020, Arm Limited. All rights reserved.*