1.62 TrustZone Secure TrustRAM Demonstration - PIC32CMLS60

This example application displays the TrustRAM content on a console which is refreshed every seconds. This example allows to experiment static and dynamic tamper detections coupled with a TrustRAM full erase.

Description

This demonstrates TrustZone feature and uses two projects viz., Secure and Non-Secure Project that work together on the same MCU and offering security isolation between the Trusted and the Non-trusted resources in the device.

  • Secure project configures the TrustRAM security features and the RTC peripheral for tamper detection
  • Non-secure project configures the SERCOM3 peripheral to display content on console through UART pins
  • Non-secure project uses veneers to request from Secure project, to fill TrustRAM content and display this content every second. When a Tamper is detected, Non-Secure application is halted and TrustRAM content is fully erased.

Components Used

  • TrustRAM - Configured as Secure mode
  • RTC - Configured as Secure mode
  • PA08 - Configured as Secure pin (RTC Tamper Pin)
  • SERCOM3 - Configured as Non-secure mode (USART mode)

Downloading and Building the Application

To clone or download this application from Github, go to the main page of this repository and then click Clone button to clone this repository or download as zip file. This content can also be downloaded using content manager by following these instructions.

Path of the application within the repository is as shown below:
TypePath
Project Groupapps/trustZone/tram/tram_ls60
Secure Projectapps/trustZone/tram/tram_ls60/Secure/firmware
Non-Secure Projectapps/trustZone/tram/tram_ls60/NonSecure/firmware
To build the application, refer to the following table and open the project using its IDE.
Project NameDescription
pic32cm_ls60_cpro_Secure.X

pic32cm_ls60_cpro_NonSecure.X

Secure and Non-secure MPLABX project for PIC32CM LS60 Curiosity Pro Evaluation Kit

Setting Up the Hardware

The following table shows the target hardware for the application projects.

Project NameBoard
pic32cm_ls60_cpro_Secure.X

pic32cm_ls60_cpro_NonSecure.X

PIC32CM LS60 Curiosity Pro Evaluation Kit

Setting Up PIC32CM LS60 Curiosity Pro Evaluation Kit

  • Connect the Debug USB port on the board to the computer using a micro USB cable
  • Short PA08 pin (EXT3, PIN 3) to GND

Running the Application

  1. Open the Terminal application (Ex.:Tera term) on the computer
  2. Connect to the EDBG Virtual COM port and configure the serial settings as follows:
    • Baud : 115200
    • Data : 8 Bits
    • Parity : None
    • Stop : 1 Bit
    • Flow Control : None
  3. Open the project group in the MPLAB X IDE and set the non-secure project as main project
  4. Build and program the application
  5. The console should display the following TrustRAM content:
  1. Tied down the PA08 pin with a jumper (Remove short from GND and connect it to Vcc to create a rising edge)
  2. The following TrustRAM content should be observed on console, meaning the TrustRAM Full Erase was performed because of Tamper Erase Detection: