Trusted Firmware OP TEE: v3.20.0 Release
Trusted Firmware OP TEE v3.20.0 was released on the 20th of January, 2023. The release includes support for signing TAs using subkey, SCMI server from SCP-firmware, platform updates and more.
Here are some of the main additions in OP TEE 3.20.0:
- Signing TAs using subkeys
- SCMI server from SCP-firmware
- SHA-512 and SM3 using ARMv8.2-A cryptographic extensions
- Add support for compiler stack protector (Core and TAs)
- Adds support for the SM4-XTS algorithm
- Adds mitigations in TA loading against hardware fault injection attacks
- Reject weak hash algorithms when verifying for instance signed TAs
The release included updates to the following repos:
More details can be found in the change log here.
Testing of the release has been performed by the committers and can be found here
Test plan for this release using the OP-TEE are here test suite. Testing results can be found in the pull request itself
The release has been tagged at 3.20.0 using the OP TEE release procedure.
The OP TEE release roadmap can be found here.
Any security fixes prior to the next release will be made available on the Security Advisories page.
TrustedFirmware.org is an open source project implementing foundational software components for creating secure devices. Trusted Firmware provides a reference implementation of secure software for processors implementing both the A-Profile and M-Profile Arm architecture. It provides SoC developers and OEMs with a reference trusted code base complying with the relevant Arm specifications. Trusted Firmware code is the preferred implementation of Arm specifications, allowing quick and easy porting to modern chips and platforms. This forms the foundations of a Trusted Execution Environment (TEE) on application processors, or the Secure Processing Environment (SPE) of microcontrollers.
TrustedFirmware.org is member driven and member funded. To learn more about TrustedFirmware.org, please visit: https://www.trustedfirmware.org/
To learn more about membership and its benefits, please see the following page or send a request for more information to email@example.com.