How does TEE / Secure Enclave work on Altra?
I’d like to know if there is the concept of OP-TEE / Secure Enclave support on the Altra CPU,
taking a look at the datasheet and there is a TMM, which is more on the secure boot side
Any ideas welcome, maybe i’m missing the approach here
Welcome, Darren! Trusted Execution is well out of my wheelhouse, but I can confirm that Altra cores do provide an ARM TrustZone (it’s part of the Neoverse N1 core specs) and apparently you can use OP-TEE with ARM TrustZones (but honestly, I would love to hear from you if it works, because I’ve never done it).
Hi Dave, Thanks for the message, sorry only following up now,
But yes, this is something I was thinking that is available, i’ll give it a spin and see where I get and circle back, thanks for the links, BR Darragh
I’d love to hear back! As I understand it, we are not supporting S-EL2 in Altra, and there are security considerations running OP-TEE (which moperates at S-EL1). I would love to hear back if you experiment with OP-TEE whether you get it working.