How does TEE / Secure Enclave work on Altra?
I’d like to know if there is the concept of OP-TEE / Secure Enclave support on the Altra CPU,
taking a look at the datasheet and there is a TMM, which is more on the secure boot side
Any ideas welcome, maybe i’m missing the approach here
Welcome, Darren! Trusted Execution is well out of my wheelhouse, but I can confirm that Altra cores do provide an ARM TrustZone (it’s part of the Neoverse N1 core specs) and apparently you can use OP-TEE with ARM TrustZones (but honestly, I would love to hear from you if it works, because I’ve never done it).
Dave.
Hi Dave, Thanks for the message, sorry only following up now,
But yes, this is something I was thinking that is available, i’ll give it a spin and see where I get and circle back, thanks for the links, BR Darragh
Hi Darragh,
I’d love to hear back! As I understand it, we are not supporting S-EL2 in Altra, and there are security considerations running OP-TEE (which moperates at S-EL1). I would love to hear back if you experiment with OP-TEE whether you get it working.
Dave.