Ask questions and find answers on STM32 security frameworks and tools, including cryptographic libraries, TrustZone, and the Secure Manager.
Colleagues.I recently implemented Proprietary code readout protection (PCROP) according to AN4758 on the STM32G473CEU MCU in IAR v.9.50.1. The project I was protecting was quite large and did not fit into one flash bank. As soon as the project no lon...
Hello,I have a problem with the operation of my firmware in "closed" state of PRODUCT_STATE. When my device is in "open" mode (ED code) my firmware works perfectly fine, but when i do provisioning procedure and change state to closed (72 code), my fi...
Hello everyone,My team and I are working with a custom board based on the STM32WB55RG. Due to limited pin availability, we need to use USB as a virtual COM port for serial communication. We successfully configured the USB Virtual COM and were able to...
Hi,In the past we've always produced 'release' firmware for STM32F4 which checks the RDP level (memory read / debug protection) at boot up, and ensures it's automatically set to RDP1 (read protection enabled). This ensures that our code can't be easi...
Hi Team,I am new to SBSFU, and our team requires two image examples. To reduce boot time, I need to eliminate the complete swap region, and I am currently working on this.I will flash the SBSFU binary, including only the SBSFU application, using the ...
Hello,I am using the Nucleo-STM32F411RE development board and require support for cryptographic functions, particularly ECC Point Generation.input: w0, N output: Y, y Begin generate random scalar y on chosen curve Y=y×G+w0×N (G as defined NIST P-256...
Hi,I've tested freertos when trustzone is enabled, the freeRTOS can work.I've tested PSA API in "TFM_Appli\NonSecure" when freertos not used, also can work.When I try to access PSA API in "TFM_Appli\NonSecure", when freertos is used, it will trigger ...
After the build process for the project, I get a file.bin that I want to encrypt to be protected and decrypted in my chip via the bootloader. How is this done, knowing that I use stm32 cube ide?
Hello,I have successfully executed the default OEMiROT and Application projects in STM32CubeH5\Projects\NUCLEO-H563ZI\ on our prototype board based on STM32H563 1MB variant. Slight adaptations were needed for which I got plenty of support in this thr...
Hi everyone,We're working with STiROT and TrustZone on an STM32H5 (NUCLEO-H533RE), and during the provisioning process we generate the STiRoT_Config.obk file from the STiRoT_Config.xml using the Trusted Package Creator (TPC).Our question is whether t...