TF-M Secure storage B-U585I-IOT02A

Bea_Ibtihel · ‎2026-02-04

Hello , I am aiming to demonstrate secure storage operation SST using PSA APIs using STM32U585. To verify that TF-M services are operational and Secure/Non-Secure communication works. However I dont find any more stm32cube TFM ready solutions/examples. So i have started from SBSFU examples and cloned TFM Source code from trusted firmware m git and trying to integrate the lib I need . Is this the right way to do so ? is there better starting point? Also it make more sens to put this in secure world however not sure if there is any considerations to think of while doing this .

This is what I am trying to do one Secure Storage lifecycle:

Write data to Secure Storage using psa_ps_set()
Read the data back using psa_ps_get()
Verify data integrity using memcmp()
Remove the stored object using psa_ps_remove()

Jocelyn RICARD · ‎2026-02-09

Hello @Bea_Ibtihel ,

yes, TFM is no more provided in the Cube.

You have 2 options. Either use an old Cube U5 containing the TFM. This will be a very old version 1.3. This would be the easier way but ITS implementation has changed since this 2021 version.

The other option which i is to build directly from trusted firmware git.

With this solution you get both secure boot through mcuboot and TFM core with services.

Build is described in official TFM documentation.

Best regards

Jocelyn

Bea_Ibtihel · ‎2026-02-13

Hello @Jocelyn RICARD

I downloaded an older version of STM32CubeU5 v1.3 to better understand how TFM was originally integrated before the recent changes and updates. This helped me follow the initial solution design and use it as a reference to adapt the architecture for the SBSFU application.

Next, I will build TFM directly from the upstream Git repository to identify any issues related to dependencies or integration, and I’ll share the findings accordingly.