5.3 AE residing within the SE

In this scenario, the entire AE resides within the SE and utilizes security services provided by the SE. In addition the CSE may access the SE for dedicated security services via the Mcs reference point as depicted in figure 5.3-1. The AE may additionally access CSE resources via the Mca reference point.

Figure 5.3-1: Secure Environment architecture in a Field Domain Node

Figure 5.3-1: Secure Environment architecture in a Field Domain Node

The SE is integrated into the node as follows:

Logically: the SE offers sensitive functions f(x)_sec and security resources res_sec to CSEs residing within the field domain node via the Mcs reference point. The AE is integrated within the SE such that it uses SE internal interfaces and methods.
Physically: in case the SE is a dedicated hardware component, it has to be integrated into the field domain node physically including low level drivers that enable logical access to the SE. The physical connection is superfluous in case the SE is implemented in software.