Draft:Platform Security Architecture

The Platform Security Architecture (PSA) is a family of security standards specified by ARM.[1][2]. PSA attempts to standardize device security requirements and the application programming interface (API) between applications and trusted execution environments[3].

As of 2019, PSA documentation is divided into three parts:

  • Threat Models and Security Analyses
  • Standard interfaces for Secure Storage, Attestation and Cryptography
  • Hardware and firmware security requirements for secure hardware (Trusted Base System Architecture)

A reference implementation is implemented by the Trusted Firmware project[4]. The standardised APIs provide software compatibility to applications on platforms that provide different variants of hardware accelerator and trusted execution environment.


Some versions of the following operating systems have been certified to conform to one or more of the various PSA standards[5]. This means that they passed the automated conformance tests:

  • Keil RTX
  • MbedOS
  • X-Ware IoT Platform[6]
  • Zaya

Chip vendors Cypress, Express Logic, Microchip, Nordic Semiconductor, Nuvoton, ST Microelectronics, and Silicon Labs have passed level one testing[7][8]

The architecture compliance suite to check if a system is compliant to the API specifications is available as open source software. It can be downloaded from https://github.com/arm-software/psa-arch-tests

See alsoEdit


  1. ^ "Arm leads fight to tighten IoT device security | Business Weekly | Technology News | Business news | Cambridge and the East of England". www.businessweekly.co.uk. Retrieved 2019-10-06.
  2. ^ Williams, Chris; at 13:00, Editor in Chief 17 Oct 2018. "Arm PSA IoT API? BRB... Toolbox of tech to secure net-connected kit opens up some more". www.theregister.co.uk. Retrieved 2019-10-06.CS1 maint: extra text: authors list (link)
  3. ^ "PSA APIs to ensure IoT security - Arm Community". community.arm.com. Retrieved 2019-10-06.
  4. ^ "About". Trusted Firmware. Retrieved 2019-10-06.
  5. ^ Schor, David (2019-02-25). "Arm Announces a New Security Certification Program for IoT Devices". WikiChip Fuse. Retrieved 2019-10-06.
  6. ^ "Arm Platform Security Architecture (PSA) Certification". rtos.com. Retrieved 2019-10-06.
  7. ^ "RISC-V, MIPS could use ARM platform security". eeNews Europe. 2019-03-04. Retrieved 2019-10-06.
  8. ^ Hayes, Caroline (2019-02-25). "Embedded World: Arm introduces fourth security element to PSA". Electronics Weekly. Retrieved 2019-10-06.