STM32 MCUs Security

secure bootloader

Hi, I have a doubt. I made some changes in the secure bootloader to achieve certain functionality, but I am unsure whether the code in the secure bootloader is developed by ST (such as drivers or APIs), or if it is intended for user modifications. Sp...

Provisioning STM32H5 via UART and RSS

Hi everyone,Hi @Jocelyn RICARD, @D.Botelho @Jocelyn RICARDyou made this small bootloader example for testing H7 security features, e.g. RDP:https://community.st.com/ysqtg83639/attachments/ysqtg83639/mcu-security-forum/6051/1/STM32H753_SecureMem_Examp...

SBSFU Bootloader Not working In Release mode (When security flags enabled)

Hi Team, I am working on project where we are implementing Secure upgrade feature using SBSFU package, we followed the steps as mentioned by ST community and to integrate SBSFU in our project. we have two modes Debug mode and Release mode.in Debug Mo...

Issue with reading OBK payload plaintext on STM32H573 using SAES and DHUK

I am trying to use the DA function of the STM32H573. I can successfully write the OBK file (with TrustZone disabled) and regression via STM32_Programmer_CLI.exe. However, I encountered an issue when trying to read the plaintext of the OBK payload in ...

Problems with local structure variables in STM32 with SBSFU

Hello,In a project with STM32 using SBSFU in a U575 microcontroller, why can a local variable of type structure within a function cause failures or unexpected behaviour in the secure zone, while a global variable of the same type works correctly?

Resolved! X-CUBE-SBSFU: Compiler Optimization Impacts

Section 6.1 of AN5056 (for X-CUBE-SBSFU) states that the projects are delivered with the highest level of compiler optimizations turned on for size aspects.If the Optimization Level was set to 'None', then how much larger is the generated code expect...

CMSIS cmox_mac_compute() with trustzone on Secure CRC peripheral

Hello , I am trying to calculate a MAC using `cmox_mac_compute()` from this lib on an STM32L562 in the Secure code.The code looks like this :auto r = cmox_initialize(NULL); /*default template with stm32l5xx.h included*/ auto ret = cmox_mac_compute(CM...

How to securely store LoRaWAN keys (AppKey, NwkSKey, AppSKey) in STM32WL5MOC6HTR (no STSAFE)

Hello ST team,We are working with the STM32WL5MOC6HTR module for a LoRaWAN end-device design.We understand that the STM32WL5MOC6HS variant includes an STSAFE-A110 secure element, but our custom module (MOC6HTR) does not include STSAFE.Our question is...

Resolved! SBSFU on STM32U5A9

Hello! I want to implement secure boot / secure firmware install on my STM32u5A9 custom board. I am starting by trying to modify the SBSFU example code from B-U585I-IOT02A example project to run on my board. I followed the instructions in the README ...

Exit standby mode from user app with SBSFU intergated

We have an application running on an STM32WB55M. This user application makes use of standby mode, and the device is able to exit it when the configured pin changes state.However, once the SBSFU is integrated with the BLE_ota application, the user app...

STM32 MCUs Security

Forum Posts

secure bootloader

Provisioning STM32H5 via UART and RSS

SBSFU Bootloader Not working In Release mode (When security flags enabled)

Issue with reading OBK payload plaintext on STM32H573 using SAES and DHUK

Problems with local structure variables in STM32 with SBSFU

Resolved! X-CUBE-SBSFU: Compiler Optimization Impacts

CMSIS cmox_mac_compute() with trustzone on Secure CRC peripheral

How to securely store LoRaWAN keys (AppKey, NwkSKey, AppSKey) in STM32WL5MOC6HTR (no STSAFE)

Resolved! SBSFU on STM32U5A9

Exit standby mode from user app with SBSFU intergated

STM32L552 HASH Peripheral final digest with a mult...

STM32H563 OEMiROT Non-Secure Application flash siz...

Not able to parse rsa public key using mbedtls

stm32h563 OEMiROT_Appli_TrustZone failed to updat...

STM32H7Sx - Passing volatile data to lower HDPL le...

How to disable encryption and not using installati...