Deeptrust for PCI security architecture  SPEC98T17 rev E
Specification of Deeptrust, the Security Architecture for Cortex-M.

The Key Manager allows secure importation, storage and execution of cryptographic keys in cryptographic protocols offered by the Cryptographic API. It also handles X.509 certificates (importation, verification, public key extraction).

Keys are assigned access rules that define what box can do what with the key (e.g. execute only, import, etc.)