Ask questions and find answers on STM32 security frameworks and tools, including cryptographic libraries, TrustZone, and the Secure Manager.
Hello, I am asking for help from the community. My application is completely written, but I can't set read protection. I tried to do all the steps in this guide, but it led to bricking one of my boards. The second board is still in product state = 17...
Hello,I am currently working with the STM32CubeN6 MCU Package and I noticed something surprising:For NUCLEO-N657X0-Q templates like Template_FSBL_LRUN and Template_FSBL_XIP, STM32CubeIDE projects are provided directly (under /STM32CubeIDE/).For Temp...
Colleagues.I recently implemented Proprietary code readout protection (PCROP) according to AN4758 on the STM32G473CEU MCU in IAR v.9.50.1. The project I was protecting was quite large and did not fit into one flash bank. As soon as the project no lon...
Hello,I have a problem with the operation of my firmware in "closed" state of PRODUCT_STATE. When my device is in "open" mode (ED code) my firmware works perfectly fine, but when i do provisioning procedure and change state to closed (72 code), my fi...
Hello everyone,My team and I are working with a custom board based on the STM32WB55RG. Due to limited pin availability, we need to use USB as a virtual COM port for serial communication. We successfully configured the USB Virtual COM and were able to...
Hi,In the past we've always produced 'release' firmware for STM32F4 which checks the RDP level (memory read / debug protection) at boot up, and ensures it's automatically set to RDP1 (read protection enabled). This ensures that our code can't be easi...
Hi Team,I am new to SBSFU, and our team requires two image examples. To reduce boot time, I need to eliminate the complete swap region, and I am currently working on this.I will flash the SBSFU binary, including only the SBSFU application, using the ...
Hello,I am using the Nucleo-STM32F411RE development board and require support for cryptographic functions, particularly ECC Point Generation.input: w0, N output: Y, y Begin generate random scalar y on chosen curve Y=y×G+w0×N (G as defined NIST P-256...
Hi,I've tested freertos when trustzone is enabled, the freeRTOS can work.I've tested PSA API in "TFM_Appli\NonSecure" when freertos not used, also can work.When I try to access PSA API in "TFM_Appli\NonSecure", when freertos is used, it will trigger ...
After the build process for the project, I get a file.bin that I want to encrypt to be protected and decrypted in my chip via the bootloader. How is this done, knowing that I use stm32 cube ide?