ESP Privilege Separation Logo
  • Getting started
  • Techincal Details
    • Architecture
    • World and Permission Control
    • System call
    • Design choices
    • Secure boot
  • API Reference
ESP Privilege Separation
  • »
  • Technical Details
  • Edit on GitHub

Technical DetailsΒΆ

  • Architecture
    • Overview
      • Protected
      • User
    • Component Split
    • Bootup Flow
  • World and Permission Control
    • Switching between Secure and Non-secure World
  • System call
    • Implementation
    • Adding custom system call
      • 1. Create a custom system call table
      • 2. Assign new system call number
      • 3. User system call implementation
      • 4. Protected system call implementation
      • 5. Build system changes to add custom system calls
    • Translation of API to system call
    • Performance impact of system call
  • Design choices
    • Separate stack for servicing system calls
    • Data handling during context switch
    • User space interrupt/event handling
    • Driver development
    • Separate heap allocators
  • Secure boot
    • Overview
    • Protected app secure boot
    • User app secure boot
    • Certificate based verification scheme
      • Protected app
      • User app
    • Verification process
    • Signature block format
    • How to enable Secure boot
      • Protected app
      • User app
Next Previous

© Copyright 2022 - 2022, Espressif Systems (Shanghai) Co., Ltd

  • Built with Sphinx using a theme based on Read the Docs Sphinx Theme.