Skip To Main Content
Intel logo - Return to the home page
My Tools

Select Your Language

  • Bahasa Indonesia
  • Deutsch
  • English
  • Español
  • Français
  • Português
  • Tiếng Việt
  • ไทย
  • 한국어
  • 日本語
  • 简体中文
  • 繁體中文
Sign In to access restricted content

Using Intel.com Search

You can easily search the entire Intel.com site in several ways.

  • Brand Name: Core i9
  • Document Number: 123456
  • Code Name: Emerald Rapids
  • Special Operators: “Ice Lake”, Ice AND Lake, Ice OR Lake, Ice*

Quick Links

You can also try the quick links below to see results for most popular searches.

  • Product Information
  • Support
  • Drivers & Software

Recent Searches

Sign In to access restricted content

Advanced Search

Only search in

Sign in to access restricted content.

The browser version you are using is not recommended for this site.
Please consider upgrading to the latest version of your browser by clicking one of the following links.

  • Safari
  • Chrome
  • Edge
  • Firefox

OP-TEE* for Intel® Architecture

Overview

This open source trusted execution environment implementation is originally based on Arm TrustZone* and maintained by Linaro*.

OP-TEE* for Intel® Architecture is the hardware virtualization-based OP-TEE solution for x86 systems from Intel. It has a fully compatible design and maximum reuse of OP-TEE. It's a full environment including an operating system, services, and APIs that consist of the following:

  • Operating system and kernel that:
    • Supports virtual address space isolation and privilege isolation
    • Works in event-driven model by request from the Rich Execution Environment (REE)
  • Drivers for a Linux* kernel
  • Libraries for client and trusted applications
  • Hypervisor that uses Intel® Kernel Guard Technology (Intel® KGT), which Intel open sourced in 2015.

Intel KGT

Solution: Two-Virtual Machines (VM)


Original equipment manufacturers (OEM) can develop their own rich operating system client applications and corresponding OP-TEE for Intel Architecture applications and services with the following setup:
 
  • One VM runs the OP-TEE operating system and trusted applications. The other VM runs a rich operating system.
  • Trusted applications are isolated with Intel® Virtualization Technology (Intel® VT) for IA-32, Intel® 64 and Intel® Architecture (Intel® VT-x).
  • An x86 OP-TEE driver and virtual machine monitor (VMM) from Intel.
  • A hypervisor (like Intel KGT) creates the two VMs for the rich and OP-TEE operating systems.

 

GitHub*

  

Report an Issue

Contact Us

        

Figure 1. Stack of OP-TEE for Intel architecture

 

open at intel logo

Explore the world of Intel’s open platform projects, contributions, community initiatives, and more at open.intel.com.

Explore

 

  • Overview
  • Solution: Two-Virtual Machines (VM)
  • Company Overview
  • Contact Intel
  • Newsroom
  • Investors
  • Careers
  • Corporate Responsibility
  • Inclusion
  • Public Policy
  • © Intel Corporation
  • Terms of Use
  • *Trademarks
  • Cookies
  • Privacy
  • Supply Chain Transparency
  • Site Map
  • Recycling
  • Your Privacy Choices California Consumer Privacy Act (CCPA) Opt-Out Icon
  • Notice at Collection

Intel technologies may require enabled hardware, software or service activation. // No product or component can be absolutely secure. // Your costs and results may vary. // Performance varies by use, configuration, and other factors. Learn more at intel.com/performanceindex. // See our complete legal Notices and Disclaimers. // Intel is committed to respecting human rights and avoiding causing or contributing to adverse impacts on human rights. See Intel’s Global Human Rights Principles. Intel’s products and software are intended only to be used in applications that do not cause or contribute to adverse impacts on human rights.

Intel Footer Logo