Security Architectures | Platform Security Architecture

Find out more about the four stages of PSA in our overview white paper.

Download

Asset TrackerTMSA

Download analysis

Smart Water Meter TMSA

Download analysis

Network Camera TMSA

Download analysis

Architect

The architect stage contains a set of freely available hardware and firmware specifications to design-in the necessary security requirements for your product. The specifications include the PSA Security Model (PSA-SM), Trusted Boot Firmware Update (TBFU), Trusted Base System Architecture (TBSA), and the PSA Firmware Framework (PSA-FF). The PSA Security Model provides important terminology and methodology for PSA and informs the use of the other PSA specifications.

Application interoperability can be achieved using the PSA API specifications, these can be found in the implement section below.

Security Model (PSA-SM)

Top-level requirements for secure design of all products, outlining the key goals for designing products with known security properties. We recommend security leads to read this document first.

Download PSA-SM

Trusted Boot and Firmware Update (PSA-TBFU)

System and firmware technical requirements for firmware boot and update.

Download PSA-TBFU

PSA Firmware Framework for M (PSA-FF-M)

Specification for a standard programming environment and fundamental Root of Trust (RoT) for secure applications on an M-profile product.

Download PSA-FF-M

PSA Trusted Base System Architecture for M (TBSA-M)

Specification for hardware requirements for Armv8-M products, including best practice recommendations for Armv6-M and Armv7-M.

Download TBSA-M

PSA Firmware Framework for A (PSA-FF-A)

Specification for a standard programming environment and fundamental Root of Trust (RoT) for secure applications on an A-profile product.

Download PSA-FF-A

Implement

The implement stage offers an open source firmware reference implementation, APIs and an API test suite. These collectively provide developers with a trusted code base that complies with PSA specifications, and APIs that create a consistent interface to underlying Root of Trust hardware.

Additionally, there are three sets of PSA APIs that ensure application interoperability across different hardware implementations of the device Root of Trust. These include the PSA Functional Developer APIs for RTOS and software developers, PSA Firmware Framework APIs for security specialists, and TBSA APIs for silicon manufacturers.

Trusted Firmware-M (TF-M)

Trusted Firmware-M (TF-M) provides reference implementation of secure world software to implement threat mitigations defined in common use cases.

Based on the PSA Firmware Framework specification and providing the reference implementation of the PSA Functional APIs, TF-M supports quick adoption of PSA and gets security over a wide variety of hardware platforms. This makes security easier for the whole IoT ecosystem and accelerates the journey to PSA Certified.

TF-M is an open source, open governance project, creating a platform for shared ownership of the codebase. This model provides easier maintenance and reduced time-to-market.

Download TF-M

Application interoperability with PSA Functional APIs

The PSA Functional APIs define the foundations from which security services are built, allowing devices to be secure by design. The three APIs provide a consistent developer experience for RTOS and software developers ensuring interoperability across different hardware implementations of the Root of Trust. Functional API Certification is part of PSA Certified and checks the correct functioning of the APIs using the API test suite. Please see the following information to find out more about the APIs and their benefits.

What are the PSA Functional APIs?

The PSA Functional APIs are the developer-facing part of PSA offering security services for building secure end-to-end deployments.

Developers writing the firmware application can rely on these APIs on any PSA-compliant platform regardless of the underlying implementations.

Those interested in portability focuses on pure software solutions, whereas those interested in performance or resistance against physical attacks will favor a hardware-based implementation, potentially hosted inside a secure enclave. Regardless of this, developers can use the same functions, making their code portable and understandable.

The most fundamental APIs are Cryptography, Secure Storage (for secure storage of internal objects, and protected storage for untrusted media) and Attestation.
What is the Cryptography API?

The Cryptography API is a low-level cryptographic API optimized for microcontrollers. It provides symmetric & asymmetric key, Hash, RNG, and key storage services with support for different key lifetime policies.

The Crypto API provides developers with an easy-to-use and easy-to-learn interface to crypto primitives. It is designed for usability and flexibility and is based on the notion of key store, where keys remain opaque in storage and only accessible for usage through crypto primitives.

Learn more
What is the Secure Storage API?

The Secure Storage API supports data protection services on the device, providing integrity and confidentiality protection.

The Storage API provides two services: Internal Trusted Storage (ITS), and Protected Storage (PS). ITS provides a way for trusted services to store their most intimate secrets inside internal flash, considered the most secure storage place inside microcontrollers.

PS provides convenience functions for developers who need to store trusted data onto untrusted storage, with guarantees about confidentiality, integrity, and rollback protection.

Learn more
What is the Attestation API?

The Attestation API provides a way to obtain a health check token from the device, attesting of its components and serial numbers. This works with a challenge/response exchange with a trusted verifier on the cloud to guarantee the token is fresh and not replayed. The properties or claims like device identity, lifecycle and software state are packaged, signed, and transmitted in a standard PSA Entity Attestation Token (EAT) format. Users of this token can validate all internal components of a device to associate it with a trust level.

Learn more

PSA API Developer Facing Codes

Access PSA API Developer Facing Codes on Github

Download code

Verify the implementation of the APIs

A test suite is available to verify whether the APIs have been implemented correctly into your system. This can be accessed via Github.

Download code

Certify

The certify stage, known as PSA Certified, is an independent evaluation and certification scheme, developed by Arm and its security partners. The scheme is split into two key areas: PSA Functional API Certification and PSA Certified.

PSA Functional API Certification checks that software uses PSA interfaces correctly, through an API test suite.

PSA Certified consists of three progressive levels of assurance and robustness testing, enabling device makers to choose solutions appropriate to their use case.

Visit PSA Certified.org

Arm Community security blogs

Arm-University of Bristol Centre of Excellence

Following many years of collaboration on a range of research projects, Arm Research and the University of Bristol have established an Arm Centre of Excellence. Six months in, the Centre of Excellence is already working to influence and enhance the…

14 days ago by Rhiannon Burleigh

Configuring Armv8-M systems with CMSIS-Zone

Learn how to configure Armv8-M systems with CMSIS-Zone in this tutorial from Arm.

2 months ago by Christopher Seidl

The IoT Architect's Practical Guide to Security

Follow a working example of IoT security using a smart door lock. Learn how the Platform Security Architecture (PSA) framework provides a practical way to design-in security to connected devices.

2 months ago by Brian.