# Security tools

To develop the TrustZone components and trusted applications on Qualcomm TEE, use the Qualcomm^®^ Snapdragon^™^ Mobile PC Platform LLVM compiler for Arm^®^ Technology.

You can use SecTools v2 for signing the images, generating the fuse blower image for secure boot, and generating secure debug policies.

## Build system

For more information about the toolchain, build process, and compilation, see [Qualcomm Linux Build Guide ➝ GitHub workflow (firmware and extras)](https://docs.qualcomm.com/bundle/publicresource/topics/80-70018-254/build_addn_info.html).

## SecTools v2 for secure boot

The table lists the documentation for SecTools v2.

| Document | Description |
| --- | --- |
| [SecTools V2: Metabuild Secure Image User Guide](https://docs.qualcomm.com/bundle/80-NM248-17/resource/80-NM248-17_REV_AB_SecTools_V2__Metabuild_Secure_Image_User_Guide.pdf) | Perform the secure-image operations on metabuild software images. |
| [SecTools V2: Fuse Blower User Guide](https://docs.qualcomm.com/bundle/80-NM248-9/resource/80-NM248-9_REV_AB_SecTools_V2__Fuse_Blower_User_Guide.pdf) | Create and sign the fuse blower images. When a device uses a fuse blower image, it causes the specified fuse to be blown. |
| [SecTools V2: ELF Tool User Guide](https://docs.qualcomm.com/bundle/80-NM248-18/resource/80-NM248-18_REV_AD_SecTools_V2__ELF_Tool_User_Guide.pdf) | Generate, add segments, and combine the ELF software images. |
| [SecTools V2: MBN Tool User Guide](https://docs.qualcomm.com/bundle/80-NM248-19/resource/80-NM248-19_REV_AB_SecTools_V2__MBN_Tool_User_Guide.pdf) | Add the modem configuration binary (MBN) headers to binary images. |
| [SecTools V2: ELF Consolidator User Guide](https://docs.qualcomm.com/bundle/80-NM248-20/resource/80-NM248-20_REV_AA_SecTools_V2__ELF_Consolidator_User_Guide.pdf) | Create the consolidated ELF software images. A consolidated ELF contains the contents of multiple subsystem images. |
| [SecTools V2: Secure Image User Guide](https://docs.qualcomm.com/bundle/80-NM248-12/resource/80-NM248-12_REV_AB_SecTools_V2__Secure_Image_User_Guide.pdf) | Sign, encrypt, and inspect Qualcomm software images. |
| [SecTools V2: Secure Debug User Guide](https://docs.qualcomm.com/bundle/80-NM248-23/resource/80-NM248-23_REV_AA_SecTools_v2__Secure_Debug_User_Guide.pdf) | Generate and sign the debug policy images to enable device debugging and authentication. |

Note

The *SecTools* guides are available to licensed users with authorized access.

## Next steps

- To initialize and configure the hardware for running securely on Linux, see [Bring up security features](https://docs.qualcomm.com/doc/80-70018-11/topic/bring-up.html#bring-up).
- To configure Qualcomm TEE for securing devices that handle sensitive data and run trusted applications, see [Configure security services](https://docs.qualcomm.com/doc/80-70018-11/topic/configure.html#configure).

Last Published: Apr 10, 2025

[Previous Topic
Develop trusted and client applications](https://docs.qualcomm.com/bundle/publicresource/80-70018-11/topics/develop_lru.md) [Next Topic
Bring up security features](https://docs.qualcomm.com/bundle/publicresource/80-70018-11/topics/bring-up.md)