ARM 信任区使用 [英] ARM trustzone usage

问题描述

我想问一些关于 ARM trustzone 的问题.

I would like to ask some questions about ARM trustzone.

1.) 谁能给我一个具体的例子:什么时候需要 trustzone 以及它如何帮助解决安全问题?

1.) Can anyone give me the concrete example: when trustzone is needed and how it helps to solve security problems?

2.) 我听说 FIQ 可以配置为安全中断".这是否意味着我的 FIQ 处理程序将位于安全的世界中?

2.) I heared that FIQs could be configured as "secure interrupts". Does it mean that my FIQ handlers will be situated in secure world?

3.) 当这个 FIQ 安全/非安全配置完成时?我认为答案就在 GIC 寄存器中的某个地方.我可以阅读这个寄存器来确定安全/非安全 FIQ 配置吗?

3.) When this FIQ secure / non secure configuration is done? I think the answer is somewhere in the GIC registers. Could i read this registers to be sure about secure / non secure FIQ configuration?

谢谢.

推荐答案

1. 它提供了额外的特权分离级别，扩展到互连中，允许其他一些软件以比主操作系统更高的特权运行(因此受到保护).

1. It provides an additional level of privilege separation, extended into the interconnect, permitting some other software to run more privileged than (and hence protected from) the main operating system.

如果您将安全中断配置为作为 FIQ 传送到安全世界，则使用安全世界异常向量表.

If you configure Secure interrupts to be delivered as FIQs to Secure world, then the Secure world exception vector table is the one that is used.

只要您愿意，但通常作为安全操作系统启动的一部分.您可以从安全世界读取这些寄存器 - 安全寄存器无法从普通世界读取.

Whenever you feel like, but generally as part of a Secure OS startup. You can read these registers from Secure world - the Secure registers are not readable from Normal world.

GIC 架构规范可从以下网址下载(需注册)http://infocenter.arm.com/help/topic/com.arm.doc.ihi0048b/index.html

The GIC architecture specification can be downloaded (with registration) from http://infocenter.arm.com/help/topic/com.arm.doc.ihi0048b/index.html

这篇关于ARM 信任区使用的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！