SPRUJ28E November 2021 – September 2024 AM68 , AM68A , TDA4AL-Q1 , TDA4VE-Q1 , TDA4VL-Q1
Only secure peripherals can be connected to a secure DPI (VP) output of DSS. In order to support this requirement, the DSS exports a secure qualifier to the DSI_TX. Inside the DSI a SECURE register is implemented (DSI_WRAP_DPI_SECURE), which contains SECURE bits, [0] DPI_0_SECURE and [1] DPI_0_SECURE_VIOLATION, corresponding to the DPI port. These SECURE bits can only be set or reset by a secure host (vbusp transactions with secure qualifier set).
The behavior of DSI module for different settings of SECURE register bit and SECURE qualifier from DSS is as shown below:
SECURE Register Bit (DSI) | SECURE mqualifier (DSS) | Security Violation Status | Comments |
---|---|---|---|
0 | 0 | 0 | Data is passed (non-secure DSS data through non-secure DSI) |
1 | 0 | 0 | Data is passed (non-secure DSS data through secure DSI) |
1 | 1 | 0 | Data is passed (secure DSS data through secure DSI) |
0 | 1 | 1 | Security Violation. Data is blocked (secure DSS data through non-secure DSI) |
Once a security violation is detected, it is captured in the DSI_WRAP_DPI_SECURE[1] DPI_0_SECURE_VIOLATION register status bit.