Specification Standardizes Management of Trusted Execution Environments and Trusted Applications
New framework enables service providers to remotely manage their trusted applications on connected devices
17 January 2017 – Technical standards body GlobalPlatform has published a framework which details how trusted applications hosted on a GlobalPlatform compliant Trusted Execution Environment (TEE) can be remotely and dynamically managed. The framework is applicable to any type of device including mobile and IoT devices and will be used by service providers, TEE implementers, device makers, trusted application providers and trusted application managers.
The GlobalPlatform TEE Management Framework (TMF) defines standard methods to manage the lifecycle of the TEE once it is active. In order to support the variety of usage of the TEE in today’s digital world, the document has been defined to support the management of TEEs and trusted applications in deployment models which include: one or many actors; connected or unconnected devices; and one-to-one or one-to-many devices, as well as with symmetric and asymmetric cryptography.
Gil Bernabeu, GlobalPlatform’s Technical Director, comments: “This framework is a key part of GlobalPlatform’s TEE Specification offering. This document integrates the lessons learned from trusted application deployment required to achieve a real-world insight into the use of GlobalPlatform TEE Specifications. It enables TEE users to install, update and personalize trusted applications on a TEE, providing clear and practical direction into the management requirements of trusted applications. This standardization brings significant value to those providing trusted services on connected devices.”
GlobalPlatform TEE Specifications were first released in 2013. The management functionality has been defined to complement the existing GlobalPlatform TEE Specifications, enabling the deployment of trusted applications that are using the various GlobalPlatform TEE API. As a next step, GlobalPlatform will define specific vertical TMF-related configurations to guide implementers and users of certain devices.
All documents are available to download from the GlobalPlatform website.
Keep up to date with the latest news from GlobalPlatform:
- Follow on Twitter: http://bit.ly/wOiHFp
- Join us on LinkedIn: http://linkd.in/xjxsN5
- Subscribe on YouTube: https://www.youtube.com/user /GlobalPlatformTV
GlobalPlatform defines and develops specifications to facilitate the secure deployment and management of multiple embedded applications on secure chip technology. Its standardized infrastructure empowers service providers to develop services once and deploy across different markets, devices and channels. GlobalPlatform’s security and privacy parameters enable dynamic combinations of secure and non-secure services from multiple providers on the same device, providing a foundation for market convergence and innovative new cross- sector partnerships.
GlobalPlatform is the international industry standard for trusted end-to- end secure deployment and management solutions. The technology’s widespread global adoption across finance, mobile/telecom, government, premium content, automotive, healthcare, retail and transit sectors delivers cost and time-to-market efficiencies to all. GlobalPlatform supports the long- term interoperability and scalability of application deployment and management through its secure chip technology open compliance program.
As a non-profit, member-driven association, GlobalPlatform has cross-market representation from all continents. 120+ members contribute to technical committees and market-led task forces. For more information on GlobalPlatform membership visit www.globalplatform.org.