In edge computing, FPGA-based devices—lacking robust native security mechanisms—are increasingly targeted by attackers, while existing Trusted Execution Environment (TEE) solutions are often scenario-specific, lacking functional completeness, scalability, and cross-platform compatibility. This paper presents the first systematic mapping study (SoK) on FPGA-based TEEs, analyzing 27 representative works to construct a multidimensional feature model and conduct cross-scheme comparison and security evaluation. We identify three critical gaps: (1) absence of a unified, scalable architecture; (2) incomplete functional coverage; and (3) severe shortage of empirical validation and open-source implementations. Based on these findings, we propose a rich-feature, modular, and extensible TEE design paradigm and evolutionary roadmap tailored for general-purpose SoC-FPGA platforms. Our work establishes both theoretical foundations and practical guidelines for hardware-enhanced trustworthy edge computing.

Trusted Execution Environments (TEEs) have emerged at the forefront of edge computing to combat the lack of trust between system components. Field Programmable Gate Arrays (FPGAs) are commonly used as edge computers but were not created with security as a primary consideration. Thus, FPGA-based edge computers are increasingly the target of cyberattacks. We analyze the existing literature to systematize the applications and features of FPGA-based TEEs. We identified 27 primary studies related to different types of System-on-Chip FPGA-based TEEs. Across a wide range of applications and features, the availability of extensible solutions is limited. Most solutions focus on specific features and applications, whereas few solutions focus on feature-rich, comprehensive TEEs that can be utilized across computer systems. Whether TEEs are specific or extensible, the paucity of published studies provides evidence of research gaps. This SoK delineates these gaps revealing opportunities for researchers and developers.