Multithreading in TF-M secure partition

I haven't found much documentation yet regarding multiple threads in the secure partition, so I wanted to ask if this would be possible. Was planning to also test it out myself w/ some of the sample projects (maybe starting w/ the basic thread demo at NCS v.2.5.0, zephyr\samples\basic\threads\src), but wanted to get a head start w/ asking about this as well. Thank you in advance!

  • Hi,

    Each secure partition is a single thread, as mentioned in the introduction section of the Adding Secure Partition documentation.

    Please note that the partitioning into Secure Processing Environment (SPE) and Non-secure Processing Environment (NSPE) is a design pattern where as little as possible is done in SPE, and the application with all its user input and communication resides in NSPE. Anything running in secure partitions should be as small, simple and thoroughly scrutinized and tested as possible. It is a common misconception that "everything should run in SPE to be secure", but this is false. The security comes from separation between which parts of the software has privileged access and which parts of the software has not.

    Regards,
    Terje

Related