Bureaucrats, dave_user, Administrators
4,650
edits
Changes
no edit summary
Beacause widely available Internet connectivity, nowadays security concerns are not longer limited to PCs, servers and workstations but have become common to many embedded systems as well. To deal with this kind of challenges, several hardware and software technologies have been developed. [http://www.arm.com/products/processors/technologies/trustzone/ ARM® TrustZone® technology] is one of these. As stated in <ref name="WP429">Yashu Gosain and Prushothaman Palanichamy, ''Xilinx WP429 - TrustZone Technology Support in Zynq-7000 All Programmable SoCs (v1.0)'', May 20, 2014</ref>, Xilinx Zynq-7000 AP SoC natively supports [http://www.arm.com/products/processors/technologies/trustzone/ TrustZone® technology], since it integrates dual-core ARM® Cortex™-A9 MPCore™ processor.
Even if this technology has been conceived primarily to address security issues, embedded systems designers can leverage it to implement innovative configurations satisfying different in nature requirements that typically arise in industrial applications and deep embedded systems{{efn|These kind of requirements are often totally independent of Internet connectivity}}. Two of such requirements are real-timeness and system integrity (a). This White Paper describes the TrustZone-based solution that DAVE Embedded Systems has implemented to meet all these requirements on [[:Category:Bora|BORA]] and [[:Category:BoraX|BORAX]] platforms. This solution can be considered as a sort of natural evolution on the traditional AMP configuration described in <ref name="AN-BELK-001">AN-BELK-001: Asymmetric Multiprocessing (AMP) on Bora – Linux FreeRTOSAlso, [[AN-BELK-001:_Asymmetric_Multiprocessing_(AMP)_on_Bora_–_Linux_FreeRTOS]]</ref>. For this reason, reading of this document is higly recommended.characterization tests are detailed
This solution can be considered as a sort of natural evolution on the traditional AMP configuration described in <ref name="AN-BELK-001">AN-BELK-001: Asymmetric Multiprocessing (AMP) on Bora – Linux FreeRTOS, [[AN-BELK-001:_Asymmetric_Multiprocessing_(AMP)_on_Bora_–_Linux_FreeRTOS]]</ref>. For this reason, reading of this document is higly recommended.
* '''security''' refers to a system’s immunity to data disclosure or loss as a result of the unlawful electronic penetration of the system’s protections and defenses
* '''integrity''' denotes the certainty that a system cannot be improperly altered.
==Limitations of traditional AMP configurations==
<ref name="AN-BELK-001"></ref>
TBD
==TrustZone-based approach==
TBD
===Overview===
TBD
===L2 cache management===
TBD
===Isolation vs performances===
TBD
==References==