Note that the expected quarter when a feature will be completed based on very rough estimates of the effort involved and therefore can change. Items beyond CQ2'23 will be planned in detail and confirmed at the start of the quarter depending on progress made in previous quarter and available bandwidth. If you are interested in collaborating on any of the roadmap features or other features in the project, please mail Trusted Servies mailing lists - trusted-services@lists.trustedfirmware.org **Supported Features** - PSA Crypto Service - PSA Internal Trusted Storage (ITS) Service - PSA Protected Storage (PS) Service - PSA Attestation Service - Block Storage Service - Platform Security Firmware Update Service - Example Application/Tests in Normal World using PSA Crypto and PSA Internal Trusted Storage Services - Enable Crypto HW Integration (HUK, Key derivation) in PSA Crypto Service - Enable Storage HW Integration (nwd eMMC RPMB) - leverage op-tee support - FIP based booting - FF-A Direct Messaging - Pass PSA Functional API Compliance Test Suite - smm-gateway SP - Mbed TLS3.3 Integration - meta-arm yocto enhancements **CQ2'23 (In Development)** - Yocto recipe updates - Trusted Services 1.0 Release - Mbed TLS 3.4.0 Integration - libpsa for C, C++ applications to access Trusted Services from Nornal World - GP Trusted Application/FF-A Secure Partition Cooperation PoC - SP logging prototype **CQ2'23 ** - Platform Security Firmware Update Service enhancements - FF-A manifest/tooling - GP Trusted Application/FF-A Secure Partition Cooperation demo (sharing storage backend) - smm-gateway - authenticated variables **CQ3'23 ** - FF-A manifest/tooling - Storage Backend Integration Enhancements - Authentication and Access Contol enhancements **Future ** - Shim layer for legacy GP TAs to access Trusted Services - Authentication and Access Control of Trusted Services - Contd. - Open CI

Note that the expected quarter when a feature will be completed based on very rough estimates of the effort involved and therefore can change. Items beyond CQ2'23 will be planned in detail and confirmed at the start of the quarter depending on progress made in previous quarter and available bandwidth. If you are interested in collaborating on any of the roadmap features or other features in the project, please mail Trusted Services mailing lists - trusted-services@lists.trustedfirmware.org **Supported Features** - PSA Crypto Service - PSA Internal Trusted Storage (ITS) Service - PSA Protected Storage (PS) Service - PSA Attestation Service - Block Storage Service - Platform Security Firmware Update Service - Example Application/Tests in Normal World using PSA Crypto and PSA Internal Trusted Storage Services - Enable Crypto HW Integration (HUK, Key derivation) in PSA Crypto Service - Enable Storage HW Integration (nwd eMMC RPMB) - leverage op-tee support - FIP based booting - FF-A Direct Messaging - Pass PSA Functional API Compliance Test Suite - meta-arm yocto enhancements - Cloud Migration to CI - Mbed TLS 3.4.0 Integration **CQ4'23 (In Development)** - smm gateway - Authorisation variables - GP Trusted Application/FF-A Secure Partition Cooperation PoC - SP logging prototype **CQ1'24 ** -mbedTLS 3.5 Integration - Platform Security Firmware Update Service enhancements - Authentication and Access Control enhancements **CQ2'24 ** - Yocto recipe updates - Storage Backend Integration Enhancements - GP Trusted Application/FF-A Secure Partition Cooperation demo (sharing storage backend) **Future ** - FF-A manifest/tooling - Shim layer for legacy GP TAs to access Trusted Services - Storage Backend Integration Enhancements - Contd - Authentication and Access Control of Trusted Services - Contd. - Open CI

Note that the expected quarter when a feature will be completed based on very rough estimates of the effort involved and therefore can change. Items beyond CQ2'23 will be planned in detail and confirmed at the start of the quarter depending on progress made in previous quarter and available bandwidth. If you are interested in collaborating on any of the roadmap features or other features in the project, please mail Trusted Services mailing lists - trusted-services@lists.trustedfirmware.org **Supported Features** - PSA Crypto Service - PSA Internal Trusted Storage (ITS) Service - PSA Protected Storage (PS) Service - PSA Attestation Service - Block Storage Service - Platform Security Firmware Update Service - Example Application/Tests in Normal World using PSA Crypto and PSA Internal Trusted Storage Services - Enable Crypto HW Integration (HUK, Key derivation) in PSA Crypto Service - Enable Storage HW Integration (nwd eMMC RPMB) - leverage op-tee support - FIP based booting - FF-A Direct Messaging - Pass PSA Functional API Compliance Test Suite - smm-gateway SP - Mbed TLS3.3 Integration - meta-arm yocto enhancements **CQ2'23 (In Development)** - Yocto recipe updates - Trusted Services 1.0 Release - Cloud Migration to CI - Mbed TLS 3.4.0 Integration - libpsa for C, C++ applications to access Trusted Services from Nornal World **CQ4'23 (In Development)** - smm gateway - Authorisation variables - GP Trusted Application/FF-A Secure Partition Cooperation PoC - SP logging prototype **CQ2'23 ** - Platform Security Firmware Update Service enhancements1'24 ** - FF-A manifest/tooling - GP Trusted Application/FF-A Secure Partition Cooperation demo (sharing storage backend)-mbedTLS 3.5 Integration - smm-gateway - authenticated variables **CQ3'23 **- Platform Security Firmware Update Service enhancements - FF-A manifest/tooling- Authentication and Access Control enhancements **CQ2'24 ** - Yocto recipe updates - Storage Backend Integration Enhancements - Authent- GP Trusted Application and Access Contol enhancements /FF-A Secure Partition Cooperation demo (sharing storage backend) **Future ** - FF-A manifest/tooling - Shim layer for legacy GP TAs to access Trusted Services - Storage Backend Integration Enhancements - Contd - Authentication and Access Control of Trusted Services - Contd. - Open CI