Mobile devices have evolved into open software platforms capable of downloading a huge variety of applications from the internet. These applications are often validated by the device OEM to ensure quality however not all functionality can be tested and increasingly malicious code is being created to target this class of devices.
In parallel the demand for mobile devices to handle high-value data is gaining significant momentum. New business models are emerging, from the capability to pay for, download and view the latest Hollywood blockbuster for a specific time period, or the ability to pay bills and manage bank accounts remotely from a handset.
These trends have the potential to make the mobile handset the next frontier for malevolent applications, and malware, such as trojans, and viruses. However through the application of advanced security technology based on ARMs TrustZone technology and integrating SecurCore tamper resistant elements it is possible to develop devices that can offer both a feature-rich open operating environment and robust security solutions.
Application Examples - Secured PIN entry for enhanced user authentication in mobile payments & banking
- Secured NFC communications channel
- Digital Right Management
- Software license management
- Loyalty-based applications
- Access control of cloud-based documents
- e-Ticketing
- Mobile TV
A detailed overview of TrustZone applications and implementation is available in the whitepaper “ARM Security Technology: Building A Secure System Using TrustZone Technology” (637KB PDF) and example systems are illustrated in the TrustZone System Design section Processor Support
ARM® TrustZone® technology is an integral feature of all Cortex-A class processors and was introduced through the ARM Architecture Security Extensions. These extensions provide a consistent programmers model across vendors, platforms, and applications while providing a true hardware backed security environment.
Current ARM processors supporting TrustZone - ARM Cortex-A9
- ARM Cortex-A8
- ARM1176
Fabric Support
In addition to the processor many additional aspects of the system require securing. ARM has developed a range of fabric components that enable easier secure system development and integration. Secure ARM Fabric components include - ARM Secure Interconnect
- Advanced AMBA 3 Interconnect (PL301)
The ARM AMBA® 3.0 bus standard propagates the secure status of the processor core to the memory and peripherals in the SoC and beyond
The ARM PrimeCell® peripherals ease the configuration of secure sub-systems within SoCs, enabling secure on-chip memory and dynamically secured peripherals and off-chip memory An overview of all ARM fabric components is also available. TrustZone API Support
As TrustZone can be integrated in a wide variety of systems and target very diverse application needs it is critical to enable software portability. The ARM TrustZone API was created to provide an industry standard for software applications to access security features of the host platform. ARM TrustZone API overview: - Independent of hardware platform
- Independent of host operating system
- Independent of secure environment
- Synchronous and asynchronous command invocation
- Strongly typed communications to promote secure implementation
- Promotes efficient bulk data transfer
The TrustZone API may be used royalty free to implement Trusted Execution Environments and the specification is available for download here.
A simple single-threaded software example utilizing the TrustZone API is available upon request from the ARM Support division. Please email support-cores@arm.com for further details.
Recent Press Releases Back to Top | 
