Hi,

TF-M Profile 1 initiative addressing  TF-M footprint reduction to make TF-M usable on more constrained MCUs. As part of this activity attestation service is planned to be refactored as follows:

• Static token creation: Not use QCBOR and T_COSE libraries to token creation
• HMAC based token authentication: Rely only on symmetric crypto algorithms

 

These changes are optional, the current functionality (dynamic token creation + ECDSA based authentication) remains available and default setting in higher profiles (3).

A design proposal was created, feel free to review & comment:
https://review.trustedfirmware.org/c/trusted-firmware-m/+/3344

BR,
Tamas