TRUSTED-V SW & Tools
TRUSTED-V Software & Toolchain
Rust-based secure software stack from ROM-resident bootloader through OS, middleware, and a full development & validation toolchain for any RISC-V platform.
"Formal-method driven validation at every stack layer. A component that cannot demonstrate security correctness cannot carry the TRusteD-V Verified mark."
- FIPS 140-3
- CC EAL4+
- TCG DICE
- PSA
- IEC 62443
Rust Software Stack
Full Rust-native stack from hardware root-of-trust through OS and crypto middleware — security-hardened and standards-aligned at every layer.
rBoot
ROM-resident primary bootloader. Immutable post-manufacture. Hardware Root of Trust binding. M-mode execution with PMP isolation. Minimal attack surface (<32KB).
--------------------------------------------
· ECDSA P-256 / Ed25519
· OTP Anti-rollback
· FIPS 140-3 L3
· CC EAL4+
· TCG DICE
· PSA IRoT
rustBoot
Rust memory-safe SBL. A/B slot management, authenticated OTA updates, power-loss safe writes.
SUIT RFC 9019 compatible.
ECDH encrypted firmware updates.
-------------------------------------------
· Safe Rust
· A/B Slot OTA
· ECDH + AES-256-GCM
· PSA URoT
· NIST SP 800-193
· IEC 62443-4-2
TRusteD-V RTOS
Security-hardened, deterministic real-time OS for 32-bit and 64-bit RISC-V. Minimal TCB in safe Rust. Privilege separation S-mode/U-mode. Formal API specification via IDL.
--------------------------------------------
· POSIX PSE51
· KASLR + W^X
· IEC 61508 SIL-2
· ISO 26262 ASIL-B
· OSEK/VD
HAL & PAC + Crypto Stack
Hardware Abstraction Layer and Peripheral Access Crate. Crypto stack with RISC-V Zkn/Zks/Zkr support and post-quantum primitives CRYSTALS-Kyber and Dilithium.
--------------------------------------------
· FIPS algorithms
· PQC Ready
· TLS 1.3 / DTLS
· PKCS#11
· KMIP 2.0