ARM TrustZone® technology is a system-wide approach to security on smart device platforms. This hardware architecture combined with TEE software forms the basis of trust for a wide array of applications including secure payment, digital rights management (DRM), enterprise and web-based services.
TrustZone technology is currently integrated in ARM Cortex™-A processors, extends throughout the system via the AMBA® AXI™ bus and specific TrustZone System IP blocks. In the future TrustZone will also be found in ARM Cortex-M processors based on the ARMv8 architecture, to address the securiy needs of entry level IoT devices. This system approach means that it is possible to secure peripherals such as secure memory, crypto blocks, keyboard and screen to ensure they can be protected from software attack.
TrustZone enables the development of separate Rich Operating System and Trusted Execution Environments by creating additional operating modes to the Normal domain, known as the Secure domain and the Monitor mode.
Devices developed according to the recommendations of the ARM TrustZone Ready Program utilizing TrustZone® technology and secure peripheral access deliver a platform that is capable of supporting a full Trusted Execution Environment (TEE) for security aware applications and secure services.
On top of the hardware foundation of TrustZone® technology the TEE adds a functional runtime environment with portable APIs, strong application separation through the security focused microkernel and strong protection of sensitive assets through access control and cryptography.