Ask questions and find answers on STM32 security frameworks and tools, including cryptographic libraries, TrustZone, and the Secure Manager.
Hello,I'm a developper from the CEA using STM32H573 and I am characterizing the chip boot time in various configurations. With STiRot activated (250 MHz and a 128 Kb image) I found 31 ms which is twice as much as the boot time indicated in the docume...
Hi all,I am looking into secure bootloader options for the STM32U5G9J-DK2 that support application updates using TF-M,please give me guide lines to achieve secure bootloader.
I am working on B-L4S5I-IOT1A board, and trying to connect the STSAFE A110 chip, with the reference of L476RGTx LQFP64 board's examples provided by stm. and getting below error's 1. pairing .. STSAFE-A1xx initialized successfully Pairing demonstrat...
I am trying to figure out if we can both use secure boot (with Trustzone) and dual bank at the same time. I see in AN0007 that "SWAP_BANK activation by option byte is not supported by STiRoT." Is there some other way to swap banks without using the o...
Hello,I generated code using STM32CubeMX for the STM32N657x0 MCU. I selected only the secure region and added a simple UART operation for testing purposes. In CubeMX, I selected only the Application (not the FSBL or External Memory Loader ), and gene...
Hi, I would like to know where to write the code either in secure or non-secure folder. What is the exact purpose of this folders. I want to encrypt a CAN message and send it. I have done without enabling trust zones previously. But now I enabled the...
Hello,I am having some trouble attempting to use the OEMuRoT tools/scripts to sign and encrypt my custom application built with CMake/Ninja. Application was generated using CubeMX and CMake project type was selected. Windows 11, STM32CubeProgrammer v...
Hello,I am using an STM32U585 (evaluation board B-U585I-IOT02A), and I would like to enable debugging via Debug Authentication while the device is in RDP Level 1 and with TrustZone (TZEN) activated.I have looked for documentation or examples but have...
How can it be, that the CMOX library implements `append` functions for hashes (like cmox_hash_append) but the equivalent for verification or signing of ECC algorithms does not exist?How should we check the signature of a 10 MB update package on a dev...
Hi, I am working on NUCLEO-H533RE board. I am checking all the configurations before start of my work. As attached below, The datasheets says that PKA is supported when i opened .ioc file, It is visible as greyout. I am not able to activate it. Even ...
