arno
/
trezor-firmware
mirror of https://github.com/trezor/trezor-firmware.git
1
0
Fork 0
Code Issues Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5160cbc2f9'
${ noResults }
trezor-firmware/core/embed/fw_ss/notes.md

16 lines
663 B
Raw Normal View History Unescape

TrustZone POC (firmware split)
7 months ago
- automatizace nastaveni sau a mpu (pouziti symbolu z linker skriptu)
- navrhnout hlavicku neprivilegovane aplikace
- navrh secure API, core API
// - dalsi zkoumani trustzone na STM32U5 (rozdeleni zodpovednosti mezi secure a privileged)
//- prozkoumat primy prechod z unsecure+unprivileged do secure+privileged
//- core_api, kopirovani a kontrola parametru, ochrana proti TOCTOU utoku
//- secure_api, kopirovani a kontrola parametru, cmse_check_address_range() (TT instrukce)
//- dalsich zkoumani Cortex-M33 (registry cpu)
//- nastudovovat zranitelnosti https://cactilab.github.io/assets/pdf/ret2ns2023.pdf
//- prechod secure -> unsecure, vynulovat registry