Last I looked into this, there is a HS (high security) version of the processor that supports the features you mention. Or, at least secure boot. I have never been able to find the guy that knows the guy to get the NDA signed to find out more though.
On Thu, Apr 14, 2016 at 4:03 PM, val <[email protected]> wrote: > > Hi, sorry for my english. > Suppose I want to implement my own firmware for BBB (particularly), > specifically - UEFI. (In fact, I am working on it, but by now I am to far > from the hardware part yet.) And also I want at least to try to implement my > own Secure world software stack (It's not necessarily should relate to UEFI, > but might be realated to it as well, for example for the Secure Boot stuff, > UEFI by itself even clearly states it should run in the privileged > non-secure state on aarch32). Especially - the Monitor software. AM3358 > having cortex-a8 inside it has the Security Extension inside, so the problem > lays only in availability of TrustZone hardware components for programming > them for third parties. The TI's TRM on Sitara am3358 states the ROM code > starts in the secure state and then switches into non-secure state before > transferring control to its payload, thus to my possible FW. The question > is, whether third parties like me are able to get into the chain of trust in > order to supply their own Secure world firmware/OS and especially - the > Monitor code? Does TI give such a possibility? And if so, what should be > done from my side? Maybe somebody knows this. > Thanks! > > -- > For more options, visit http://beagleboard.org/discuss > --- > You received this message because you are subscribed to the Google Groups > "BeagleBoard" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > For more options, visit https://groups.google.com/d/optout. -- For more options, visit http://beagleboard.org/discuss --- You received this message because you are subscribed to the Google Groups "BeagleBoard" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
