Security and trust in consumer electronics is rapidly becoming an important factor in new device designs. The famous use case of Digital Rights Management is just one of myriad applications that require protection, including software such as VPN clients for PDAs and fraud prevention in mobile telephones. However, the addition of specific hardware has resulted in difficulties for security software developers, who have faced a proliferation of platforms to target.

With this in mind, ARM has launched the TrustZone Software API as a freely available specification for a common interface to embedded security environments. This article describes the benefits that the TrustZone Software API can bring to a host of parties involved in the life of a device, such as silicon vendors and service providers, and discusses the development process for secure software that takes advantage of the API.

Reprinted in its entirety from ARM IQ Vol. 4, No. 3, 2005