The architecture relies on a "Chain of Trust" that ensures every piece of code executed is verified and authorized.
The CPU initializes in a default, secure state and points to the IBR.
Uses monotonic counters to prevent the system from booting older, potentially vulnerable firmware versions.
The SecMon tracks the physical and logical security state of the System on Chip (SoC). It continuously monitors security state transitions, manages hardware alarms, and coordinates the destruction of secret keys if a physical or software tamper event is detected. Non-Volatile Memory (Fuse Processor / OTP) qoriq trust architecture 21 user guide
: Instantly wipes sensitive cryptographic keys from volatile memory if tampered with. Secure Boot Workflow
VDD_PLATcap V sub cap D cap D _ cap P cap L cap A cap T end-sub typically requires elevation during fuse blowing).
Before diving into configuration, let’s break down the core blocks the user guide describes. The architecture relies on a "Chain of Trust"
Use the monotonic counters in the SNVS to implement a robust firmware revocation policy.
QTA-21 is a hardware-enhanced security framework integrated into NXP’s Qoriq processors. It combines firmware and silicon-level protections to create a Trusted Execution Environment (TEE), shielding sensitive operations from malicious attacks. Key attributes include:
: The kernel boots, mounts an encrypted root file system, and boots secure user-space applications. Key Management and Provisioning The SecMon tracks the physical and logical security
A key distinction of version 2.1 from its predecessors is the integration of Arm's TrustZone technology, creating what is specifically called the .
TA 2.1 processors include dedicated external pins capable of monitoring physical enclosures.