X-CUBE-SBSFU

Data brief

Secure Boot and Secure Firmware Update software expansion for STM32Cube

SBSFU sample application

Secure Firmware User PC

Secure Boot
firmware image
Root of Trust
loader programming
application software

Application level

Key
Secure
Cryptography management STSAFE-A
Engine Utilities
services

Middleware level

Board support package Hardware abstraction layer

(BSP) (HAL) CMSIS

Drivers

Product status link

X-CUBE-SBSFU

Features
• Secure Boot to check firmware image before execution
• Secure Firmware Update with anti-rollback and partial image update capabilities for over-the-air or local firmware image
update
• Secure key management services offering cryptographic services by means of the PKCS #11 APIs
• Standalone STM32 system solution example demonstrating best use of STM32 protections to protect assets against
unauthorized external or internal access
• Combined STM32 and STSAFE-A110 system solution example demonstrating hardware Secure Element protections for
secure authentication services and secure data storage

DB3343 - Rev 7 - August 2021 www.st.com

For further information contact your local STMicroelectronics sales office.
 X-CUBE-SBSFU

Description
The X-CUBE-SBSFU Secure Boot and Secure Firmware Update solution allows the update of the STM32 microcontroller built-in
program with new firmware versions, adding new features and correcting potential issues. The update process is performed in a
secure way to prevent unauthorized updates and access to confidential on-device data.
The Secure Boot (Root of Trust services) is an immutable code, always executed after a system reset, that checks STM32 static
protections, activates STM32 run-time protections and then verifies the authenticity and integrity of user application code before
every execution in order to ensure that invalid or malicious code cannot be run.
The Secure Firmware Update application receives the firmware image via a UART interface with the Ymodem protocol, checks
its authenticity, and checks the integrity of the code before installing it. The firmware update is done on the complete firmware
image, or only on a portion of the firmware image. Examples are provided for single firmware image configuration in order
to maximize firmware image size, and for dual firmware image configurations in order to ensure safe image installation and
enable over-the-air firmware update capability commonly used in IoT devices. Examples can be configured to use asymmetric
or symmetric cryptographic schemes with or without firmware encryption.
The secure key management services provide cryptographic services to the user application through the PKCS #11 APIs (KEY
ID-based APIs) that are executed inside a protected and isolated environment. User application keys are stored in the protected
and isolated environment for their secured update: authenticity check, data decryption and data integrity check. This is available
on the STM32L4 Series with example provided on the B-L475E-IOT01A and B-L4S5I-IOT01A boards.
STSAFE-A110 is a tamper-resistant secure element (HW Common Criteria EAL5+ certified) used to host X509 certificates
and keys, and perform verifications that are used for firmware image authentication during Secure Boot and Secure Firmware
Update procedures. This is available on the STM32L4 Series with example provided on the B-L4S5I-IOT01A board.
X-CUBE-SBSFU is built on top of STM32Cube software technology, making the portability across different STM32
microcontrollers easy. It is provided as reference code to demonstrate best use of STM32 security protections.
The X-CUBE-SBSFU Expansion Package comes with examples running on the STM32L4 Series, STM32F4 Series, STM32F7
Series, STM32G0 Series, STM32G4 Series, STM32H7 Series, STM32L0 Series, STM32L1 Series, and STM32WB Series. An
example combining STM32 microcontroller and STSAFE-A100 is also provided for the STM32L4 Series.

DB3343 - Rev 7 page 2/6

 X-CUBE-SBSFU
General information

1 General information

The X-CUBE-SBSFU Expansion Package runs on STM32 microcontrollers based on Arm® cores.
Note: Arm is a registered trademark of Arm Limited (or its subsidiaries) in the US and/or elsewhere.

1.1 Ordering information

X-CUBE-SBSFU is available for free download from the www.st.com website.

1.2 What is STM32Cube?

STM32Cube is an STMicroelectronics original initiative to significantly improve designer's productivity by reducing
development effort, time, and cost. STM32Cube covers the whole STM32 portfolio.
STM32Cube includes:
• A set of user-friendly software development tools to cover project development from conception to
realization, among which are:
– STM32CubeMX, a graphical software configuration tool that allows the automatic generation of C
initialization code using graphical wizards
– STM32CubeIDE, an all-in-one development tool with peripheral configuration, code generation, code
compilation, and debug features
– STM32CubeProgrammer (STM32CubeProg), a programming tool available in graphical and command-
line versions
– STM32CubeMonitor (STM32CubeMonitor, STM32CubeMonPwr, STM32CubeMonRF,
STM32CubeMonUCPD) powerful monitoring tools to fine-tune the behavior and performance of STM32
applications in real-time
• STM32Cube MCU and MPU Packages, comprehensive embedded-software platforms specific to each
microcontroller and microprocessor series (such as STM32CubeL4 for the STM32L4 Series), which include:
– STM32Cube hardware abstraction layer (HAL), ensuring maximized portability across the STM32
portfolio
– STM32Cube low-layer APIs, ensuring the best performance and footprints with a high degree of user
control over hardware
– A consistent set of middleware components such as FAT file system, RTOS, USB Host and Device,
TCP/IP, Touch library, and Graphics
– All embedded software utilities with full sets of peripheral and applicative examples
• STM32Cube Expansion Packages, which contain embedded software components that complement the
functionalities of the STM32Cube MCU and MPU Packages with:
– Middleware extensions and applicative layers
– Examples running on some specific STMicroelectronics development boards

1.3 How does X-CUBE-SBSFU complement STM32Cube?

X-CUBE-SBSFU is based on STM32CubeHAL, the hardware abstraction layer for STM32 microcontrollers. The
Expansion Package extends STM32Cube with a set of middleware providing secure services for a Secure Boot,
for a Secure Firmware Update application, and for any other application requiring secure cryptographic services.
The Expansion Package also includes a sample application useful for the developer to start experimenting with
the code.

DB3343 - Rev 7 page 3/6

 X-CUBE-SBSFU
License

2 License

X-CUBE-SBSFU is delivered under the SLA0048 software license agreement and its Additional License Terms.

DB3343 - Rev 7 page 4/6

 X-CUBE-SBSFU

Revision history

Table 1. Document revision history

Date Revision Changes

17-Nov-2017 1 Initial release.

Added cryptographic schemes and extended to dual- or single-image support:
13-Apr-2018 2 • Updated Features
• Updated Description
28-Jun-2018 3 Updated Description.
Expanded X-CUBE-SBSFU scope to the STM32F4 Series, STM32F7 Series,
and STM32G0 Series; integrated mbedTLS middleware component:
18-Dec-2018 4
• Updated Description
• Updated Table 1: Software component license agreements
Added the use of STSAFE-A100 and secure key management services.
Updated the entire document:
22-Jul-2019 5 • Updated Features, Description and License
• Added What is STM32Cube? and How does X-CUBE-SBSFU
complement STM32Cube?
Replaced STSAFE-A100 with STSAFE-A110.
14-Oct-2020 6 Added new B-L4S5I-IOT01A board with secure element STSAFE-A110.
Updated Features, Description, License, and What is STM32Cube?
16-Aug-2021 7 Updated Description. Updated License with the Additional License Terms.

DB3343 - Rev 7 page 5/6

 X-CUBE-SBSFU

IMPORTANT NOTICE – PLEASE READ CAREFULLY

STMicroelectronics NV and its subsidiaries (“ST”) reserve the right to make changes, corrections, enhancements, modifications, and improvements to ST
products and/or to this document at any time without notice. Purchasers should obtain the latest relevant information on ST products before placing orders. ST
products are sold pursuant to ST’s terms and conditions of sale in place at the time of order acknowledgement.
Purchasers are solely responsible for the choice, selection, and use of ST products and ST assumes no liability for application assistance or the design of
Purchasers’ products.
No license, express or implied, to any intellectual property right is granted by ST herein.
Resale of ST products with provisions different from the information set forth herein shall void any warranty granted by ST for such product.
ST and the ST logo are trademarks of ST. For additional information about ST trademarks, please refer to www.st.com/trademarks. All other product or service
names are the property of their respective owners.
Information in this document supersedes and replaces information previously supplied in any prior versions of this document.
© 2021 STMicroelectronics – All rights reserved

DB3343 - Rev 7 page 6/6