System Security on a Chip

Arm provides a range of security subsystems (hardware and software) that provide platform level security as well as acceleration and offloading.

Arm TrustZone CryptoCell enables the protection of assets (code and data) belonging to different stakeholders in an ecosystem (e.g. silicon vendor, OEM, service provider, user). CryptoCell enables SoC designers to trade off area, power, performance or robustness in a very flexible manner so that SoC designs can be optimized to achieve the most appropriate security level for the target market. Integration of the CryptoCell package in the target design is simple and straightforward, using standard HW and SW interfaces.

The CryptoIsland family provides a fully isolated subsystem, providing a similar set of security services, with the addition of greater scope for programmability and reuse.

The Arm TrustZone Security IP Families

Arm TrustZone CryptoIsland Family

The CryptoIsland family of products provide Arm partners with a highly integrated security subsystem. It does this by isolating roots of trust in a very robust manner, while increasing the ease of reuse by virtue of it’s physical isolation.

Arm TrustZone CryptoCell-300 Family

The CryptoCell-300 family is optimized for low power and resource constrained platforms.

The CryptoCell-300 family is usually coupled with Cortex-M or Cortex-R CPUs for environments that require a small footprint (e.g. IoT).

Arm TrustZone CryptoCell-700 Family

The CryptoCell-700 family is aimed at higher performance systems.

CryptoCell-700 series is usually coupled with Cortex-A CPUs for performance intensive use cases (e.g. mobile).

Arm TrustZone
Security System IP

Arm also have a range of Security System IP, including: the TrustZone Random Number Generator, TrustZone Full Disk Encryption and TrustZone Address Space Controllers.