diff --git a/non_plat/device.te b/non_plat/device.te
index adf47cc..e9a0529 100644
--- a/non_plat/device.te
+++ b/non_plat/device.te
@@ -106,6 +106,7 @@ type eemcs_device, dev_type;
 type emd_device, dev_type;
 type mt6605_device, dev_type;
 type st21nfc_device, dev_type;
+type st54spi_device, dev_type;
 type exm0_device, dev_type;
 type mmcblk_device, dev_type;
 type BOOT_device, dev_type;
diff --git a/non_plat/file_contexts b/non_plat/file_contexts
index 3c5512e..da24ae4 100644
--- a/non_plat/file_contexts
+++ b/non_plat/file_contexts
@@ -196,6 +196,7 @@
 /dev/MT6516_MP4_ENC(/.*)? u:object_r:MT6516_MP4_ENC_device:s0
 /dev/mt6605 u:object_r:mt6605_device:s0
 /dev/st21nfc u:object_r:st21nfc_device:s0
+/dev/st54spi u:object_r:st54spi_device:s0
 /dev/mt9p012(/.*)? u:object_r:mt9p012_device:s0
 /dev/mtfreqhopping(/.*)? u:object_r:mtfreqhopping_device:s0
 /dev/mtgpio(/.*)? u:object_r:mtgpio_device:s0
@@ -587,6 +588,7 @@
 /(system\/vendor|vendor)/bin/hw/vendor\.mediatek\.hardware\.keymaster_attestation@1\.1-service u:object_r:hal_keymaster_attestation_exec:s0
 #ST NFC 1.2 hidl service
 /(system\/vendor|vendor)/bin/hw/android\.hardware\.nfc@1\.2-service-st u:object_r:hal_nfc_default_exec:s0
+/(system\/vendor|vendor)/bin/hw/android\.hardware\.secure_element@1\.0-service-st54spi u:object_r:st54spi_hal_secure_element_exec:s0
 # MTK Wifi Hal
 /(system\/vendor|vendor)/bin/hw/android\.hardware\.wifi@1\.0-service-mediatek           u:object_r:mtk_hal_wifi_exec:s0
 /(system\/vendor|vendor)/bin/hw/android\.hardware\.wifi@1\.0-service-lazy-mediatek      u:object_r:mtk_hal_wifi_exec:s0
diff --git a/non_plat/st54spi_hal_secure_element.te b/non_plat/st54spi_hal_secure_element.te
new file mode 100644
index 0000000..f949e19
--- /dev/null
+++ b/non_plat/st54spi_hal_secure_element.te
@@ -0,0 +1,9 @@
+type st54spi_hal_secure_element, domain;
+hal_server_domain(st54spi_hal_secure_element, hal_secure_element)
+type st54spi_hal_secure_element_exec, exec_type, vendor_file_type, file_type;
+
+allow st54spi_hal_secure_element st54spi_device:chr_file rw_file_perms;
+
+init_daemon_domain(st54spi_hal_secure_element)
+
+