1################################### 2Glossary of terms and abbreviations 3################################### 4 5.. glossary:: 6 :sorted: 7 8 Application RoT 9 `PSA term`_. The security domain in which additional security services 10 are implemented. 11 12 HAL 13 Hardware Abstraction Layer: 14 Interface to abstract hardware-oriented operations and provides a set of 15 APIs to the upper layers. 16 17 RoT 18 Root of Trust: 19 `PSA term`_. This is the minimal set of software, hardware and data that 20 is implicitly trusted in the platform — there is no software or hardware 21 at a deeper level that can verify that the Root of Trust is authentic 22 and unmodified. 23 24 RoT Service 25 `PSA term`_. A set of related security operations that are implemented 26 in a Secure Partition. 27 28 NSPE 29 Non Secure Processing Enviroment: 30 `PSA term`_. In TF-M this means non secure domain typically running an 31 OS using services provided by TF-M. 32 33 PSA 34 `PSA term`_. Platform Security Architecture. 35 36 PSA-FF 37 `PSA term`_. Platform Security Architecture Firmware Framework. 38 39 PSA-FF-M 40 `PSA term`_. Platform Security Architecture Firmware Framework for M. 41 42 PSA RoT 43 `PSA term`_. This defines the most trusted security domain within a PSA 44 system. 45 46 SFN 47 Secure Function: 48 The function entry to a secure service. Multiple SFN per SS are 49 permitted. 50 51 SP 52 Secure Partition 53 A logical container for secure services. 54 55 SPE 56 Secure Processing Environment: 57 `PSA term`_. In TF-M this means the secure domain protected by TF-M. 58 59 SPM 60 Secure Partition Manager 61 The TF-M component responsible for enumeration, management and isolation 62 of multiple Secure Partitions within the TEE. 63 64 SPRT 65 Secure Partition Runtime: 66 The TF-M component responsible for Secure Partition runtime 67 functionalities. 68 69 SPRTL 70 Secure Partition Runtime Library: 71 A library contains the SPRT code and data. 72 73 SS 74 Secure Service: 75 A component within the TEE that is atomic from a security/trust point of 76 view, i.e. which is viewed as a single entity from a TF-M point of view. 77 78 PS 79 Protected Storage 80 One of PSA services provided by TF-M. 81 82 ITS 83 Internal Trusted Storage 84 One of PSA services provided by TF-M. 85 86 TFM 87 TF-M 88 Trusted Firmware-M or Trusted Firmware for M-class. 89 ARM TF-M provides a reference implementation of secure world software 90 for ARMv8-M. 91 92 TBSA-M 93 Trusted Base System Architecture for M. 94 TBSA term. See `Trusted Base System Architecture for M`_ 95 96 MPC 97 Memory Protection Controller: 98 Bus slave-side security controller for memory regions. 99 100 PPC 101 Peripheral Protection Controller: 102 Bus slave-side security controller for peripheral access. 103 104 S/NS 105 Secure/Non-secure: 106 The separation provided by TrustZone hardware components in the system. 107 108 SAU 109 Secure Attribution Unit: 110 Hardware component providing isolation between Secure, Non-secure 111 Callable and Non-secure addresses. 112 113 AAPCS 114 ARM Architecture Procedure Call Standard: 115 The AAPCS defines how subroutines can be separately written, separately 116 compiled, and separately assembled to work together. It describes a 117 contract between a calling routine and a called routine 118 119 MPU 120 Memory Protection Unit: 121 Hardware component providing privilege control. 122 123 SVC 124 SuperVisor Call: 125 ARMv7M assembly instruction to call a privileged handler function 126 127.. rubric:: Reference 128 129| `Firmware Framework for M (FF-M)`_ 130 131.. _Firmware Framework for M (FF-M): 132 https://www.arm.com/architecture/security-features/platform-security 133 134.. _PSA term: `Firmware Framework for M (FF-M)`_ 135 136| `Trusted Base System Architecture for M`_ 137 138.. _Trusted Base System Architecture for M: 139 https://www.arm.com/architecture/security-features/platform-security 140 141-------------- 142 143*Copyright (c) 2017-2022, Arm Limited. All rights reserved.* 144
