TrustZone CryptoCell-312 Security IP
Arm® TrustZone® CryptoCell-312 is a comprehensive security solution for low power, low area designs.
It enhances SoC-level security with features protecting the authenticity, integrity and confidentiality of code and data belonging to different stakeholders (for example the chip maker, device maker, service provider and user).
The Armv8-M inherent TrustZone capability serves as a Root of Trust (RoT), isolating assets in one execution environment and preventing them from being exploited through software vulnerabilities in another environment.
As the lock diagram on the right illustrates, CryptoCell-312 both complements the TrustZone isolation and builds on it. It provides additional trust anchors and security mechanisms to assure the execution state is safe (for a given threat model).
These mechanisms include: persistent storage of secrets, rollback prevention, validation of loaded software, validation of software updates, cryptography, True Random Number Generation, strong authentication of parties prior to giving them access to resources and more.