Text: arm TRUSTZONE (logo).

Introducing Arm TrustZone

Arm TrustZone technology provides system-wide hardware isolation for trusted software. The family of TrustZone technologies can be integrated into any Arm Cortex-A core, supporting high-performance applications processors, with TrustZone technology for Cortex-A processors.

It also supports the latest Cortex-M23 and Cortex-M33 based systems, thanks to the release of the Armv8-M architecture, filling the market need for efficient secure embedded solutions.

Want to know more about Security on Arm?

Want to know more about Arm TrustZone?


The basics of Arm TrustZone

Arm TrustZone creates an isolated secure world which can be used to provide confidentiality and integrity to the system. It is used on billions of applications' processors to protect high-value code and data for diverse use cases including authentication, payment, content protection and enterprise. On application processors it is frequently used to provide a security boundary for a GlobalPlatform Trusted Execution Environment.


TrustZone for Armv8-A vs. TrustZone for Armv8-M

Feature/Architecture TrustZone for Armv8-A TrustZone for Armv8-M 
Additional security states

SEL0 - Trusted Apps

SEL1 - Trusted OS

EL3 - Trusted Boot and Firmware (Armv8-A)

Secure thread - Trusted code/data

Secure handler - Trusted device drivers, RTOS, Library managers...

Secure interrupts Yes Yes (Fast) 
State transition (Boundary crossing) Software transition Hardware transition (Fast) 
Memory management Virtual memory MMU with secure attributes Secure Attribution Unit (SAU) and MPU memory partitions
System interconnect security Yes Yes
Secure code, data and memory Yes Yes
Trusted boot  Yes Yes
Software Arm trusted firmware (and third-party TEEs)  Keil CMSIS, Arm mbed OS, mbed uVisor and third-party software 

Want to know more about Arm TrustZone for Arm Cortex-A processors? 

Learn more

Need to know more about TrustZone for Armv8-M?

Join the community to get your questions answered

Read the Architecture Overview



Community Forums

Not answered MPU and TrustZone 0 votes 19 views 0 replies Started 12 hours ago by Talk2Joseph Answer this
Suggested answer Boot sequence and secure boot
  • Cortex-M23
  • Cortex-M
  • Armv8-M
0 votes 412 views 1 replies Latest 18 days ago by zhengwang721 Answer this
Answered Non-secure EXC_RETURN value to Secure HardFault Handler 0 votes 558 views 2 replies Latest 1 months ago by Rajiv Answer this
Answered JTAG to TrustZone Cortex-M33
  • CHI
  • TrustZone
  • Armv8-M
0 votes 959 views 2 replies Latest 1 months ago by Ronan Synnott Answer this
Answered Development platforms, compilers for TrustZone
  • Architecture
  • Address
  • CHI
  • Security
  • TrustZone
  • Armv8-M
0 votes 927 views 1 replies Latest 1 months ago by Joseph Yiu Answer this
Answered Non-secure peripheral with a secure interrupt handler
  • Layout
  • Address
  • TrustZone
  • Armv8-M
  • Memory
0 votes 1206 views 5 replies Latest 2 months ago by Joseph Yiu Answer this
Not answered MPU and TrustZone Started 12 hours ago by Talk2Joseph 0 replies 19 views
Suggested answer Boot sequence and secure boot Latest 18 days ago by zhengwang721 1 replies 412 views
Answered Non-secure EXC_RETURN value to Secure HardFault Handler Latest 1 months ago by Rajiv 2 replies 558 views
Answered JTAG to TrustZone Cortex-M33 Latest 1 months ago by Ronan Synnott 2 replies 959 views
Answered Development platforms, compilers for TrustZone Latest 1 months ago by Joseph Yiu 1 replies 927 views
Answered Non-secure peripheral with a secure interrupt handler Latest 2 months ago by Joseph Yiu 5 replies 1206 views

Other resources you may find useful