Roadmap
Updated 5 Days AgoPublic
Actions

TF-M has been under active development since it was launched in Q1'18. It is being designed to include

Secure boot ensuring integrity of runtime images and responsible for firmware upgrade.
Runtime firmware consisting of TF-M Core responsible for secure isolation, execution and communication aspects. and a set of Secure Services providing services to the Non-Secure and Secure Applications. The secures services currently planned to be supported are Secure Storage, Cryptography, Audit Logs, Attestation, Provisioning and Platform Services

Roadmap below shows when the services are getting supported and then enhanced.

Currently Supported Features

Secure Boot
TF-M Core - Inter Process Communication (IPC)
Secure Storage
Audit Logs
Crypto Secure Service
Initial Attestation Service Secure Partition Interrupt Handling
[Platform] Reset Service
[Attestation] EAT (Entity Attestation Token) - CBOR, COSE Integration. PSA Compliance
[Crypto] PSA API Compliance
[Secure Storage] PSA API Implementation
[TF-M Core] PSA Level2 Isolation
[Secure Storage,Crypto,Attestation] Compatible with PSA Firmware Framework IPC
[Secure Boot] Rollback Protection
[TF-M Core] Secure Interrupt Handling
[TF-M Core] Pre-emption of SPE execution
Dual CPU Enablement
Open Continuous Integration (CI) System
[Crypto] Use mbedcrypto
[Secure Boot] Multiple Image Update
[Storage] Crypto Binding
Boot and Runtime Crypto Hardware Integration
Dual CPU Support
[Secure Storage] Support Internal Trusted Storage PSA APIs

CQ1'20

Future

RoadmapUpdated 5 Days AgoPublicActions