The X-CUBE-AWS-H5 Expansion Package consists of an adaptation of the Amazon FreeRTOS™ STM32U5 IoT reference integration ported to an STM32H573I-DK Discovery kit as an end device.
X-CUBE-AWS-H5 proposes four projects that expose the same functionalities to the user: telemetry, shadows, device defender, jobs, and over-the-air firmware update. The telemetry data consists in the count of the IP packets going in and out of the network interface.
The easy step-in projects, aws_eth and aws_ri (no-TrustZone®), save the device credentials and settings in the external NOR flash memory of the STM32H573I-DK Discovery kit. They provide Ethernet and Wi‑Fi® connectivity, respectively.
The reference projects, aws_eth_tz aws_ri_tz (Arm® TrustZone® and STMicroelectronics secure manager), keep the device credentials and settings encrypted in the MCU secure storage. The security-sensitive data and operations remain in a secure partition, where they are not exposed to the user application. The secure boot process acts as a root of trust for the application before launching it. It takes care of the secure firmware update once a new image has been downloaded by the user application. In addition, at MCU manufacturing time, STMicroelectronics provisions a unique identity in the chip. It consists of an ECDSA key pair and an X.509 certificate signed by STMicroelectronics. This project uses this certificate for connecting to AWS IoT Core™.
Before running aws_eth_tz or aws_ri_tz, the user must install the secure manager on the STM32H573I-DK target. The secure manager access kit is available as X-CUBE-SEC-M-H5 from the STM32TRUSTEE-SM STMicroelectronics secure manager web page.
The STM32H573I-DK Discovery kit, which natively supports Ethernet connectivity, targets both the AWS IoT Core™ and the FreeRTOS™ qualification.