Hardware accelerated virtualization in the ARM Cortex ... - Xen

More documents

Recommendations

Info

Partitioning in a Secure ARM System � ARM TrustZone technology define two worlds � Everything must live in Normal World or Secure World � TrustZone-Enhanced processor exports World Information � Via NS bit (Not Secure) on system bus since AMBA 3 AXI � TrustZone-Aware devices can partition across both worlds � Only AMBA AXI compatible devices can be TrustZone-aware � AMBA 3 AXI Interconnect decodes TZ like an address line � AMBA AHB and APB do not contain TrustZone information � AHB and APB devices live in only one World � Groups of peripherals can be managed from bus interface � Inclusion of TrustZone Peripheral Controller gives more control 18
Base Secure System � Minimal TrustZone System required for payment solutions � Protects On-Chip Secure Ram area via TrustZone Memory Adaptor � Keyboard and screen secured dynamically to protect PIN entry � Master Key and Random Number Generators for daughter-keys permanently secures. Non-volatile counters required for state management & anti-rollback (fuse based not non-volatile memory due to process geometry limitations) 19
Page 1 and 2: Hardware accelerated Virtualization
Page 3 and 4: Large Physical Addressing � Corte
Page 5 and 6: How does ARM do Virtualization �
Page 7 and 8: Memory - the Classic Resource � B
Page 9 and 10: Classic Issue: Interrupts � An In
Page 11 and 12: Virtual Interrupt Controller � Ne
Page 13 and 14: Virtual interrupt example � Exter
Page 15 and 16: Helping with Virtual Devices � AR
Page 17: Potential of System MMU 17
Page 21 and 22: Propagating System Security NS : No
Page 23 and 24: ig.LITTLE Multi-Processing � “B
Page 25 and 26: ig.LITTLE Processing � Right size
Page 27 and 28: Forms of big.LITTLE � big.LITTLE
Page 29 and 30: Spanning Hypervisor Framework 29 AR

Hardware accelerated virtualization in the ARM Cortex ... - Xen

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?