2.5.4. Security and the Performance Monitoring Unit (PMU)

You can use both secure and non-secure transactions to access the Performance Monitor Unit registers. However, you can configure the PMU to count only non-secure events, or both secure and non-secure events, depending on the SPNIDEN input. The default is non-secure events.

If the SPNIDEN input is taken HIGH, there is a potential security risk because non-secure software can observe security activity through the performance counters. See Appendix A Signal Descriptions. ARM advises that you consider the security to be breached for devices placed in this state and that you take appropriate action.

If the SPNIDEN input goes from HIGH to LOW, that is, the PMUs go from counting all events to counting only non-secure events, the counters could contain information relating to secure transactions.Therefore, the software should zero the counters if access to that information could represent a potential security risk.

Note

Unlike ARM CPUs, SPNIDEN applies to events from both User and Privileged transactions and the CCI-400 makes no distinction between them.

Copyright © 2011-2012 ARM. All rights reserved.ARM DDI 0470D
Non-ConfidentialID040512