摘要
安全是物联网发展面临的最大问题之一,对物联网设备的安全攻击包括通信攻击、物理攻击、软件攻击等多种方式。针对物联网面临的软件攻击威胁,ARM在V8M架构中引入Trustzone技术,使M系列架构的处理器支持TrustZone技术,实现了硬件层次对抗软件攻击的手段。由于M系列微处理器芯片和A系列应用处理器面向的应用不同,ARM V8M架构的TrustZone下和A系列的TrustZone技术存在区别。本文介绍ARM V8M架构芯片总线结构以及数据通路,做为基于ARM V8M TrustZone技术的芯片设计参考。基于ARM V8M TrustZone技术的微处理器芯片架构,芯片中的存储空间分为安全域和非安全域两部分,用IDAU和SAU定义Master发出地址的安全属性,用MPC、PPC等组件保护存储数据和外设资源不被非法访问,实现安全域和非安全域的硬件隔离保护。
Security is one of the biggest problems that hinder the development of the IoT.Security attacks on the IoT device include communication attacks,physical attacks,and software attacks.In response to the software attack threats faced by the IoT,ARM introduced TrustZone technology to the V8M architecture,enabling the M-series processors to support TrustZone technology and implement hardware level countermeasures against software attacks.Due to the different applications of the M-series microcontroller and the A-series application processor,there is a difference between the TrustZone of the ARM V8M architecture and ARM V8A.This paper introduces the microcontroller chip structure and data path,as a chip design reference based on ARM V8M TrustZone technology.In the microcontroller chip architecture of ARM V8M TrustZone technology,the storage space of the chip is divided into two parts:security domain and non-security domain.IDAU and SAU are used to define the security attributes of the address issued by the master,and the storage data and peripheral is protected by components such as MPC and PPC to avoid illegally access,enabling hardware isolation protection for secure domains and non-secure domains.
作者
刘亮
陈震
LIU Liang;CHEN Zhen(State Grid Key Laboratory of Power Industrial Chip Design and Analysis Technology,Beijing Smart-Chip Microelectronics Technology Co.,Ltd.,Beijing 100192,China)
出处
《电子设计工程》
2020年第2期189-193,共5页
Electronic Design Engineering
