Users Guide
Table Of Contents
- Dell Data Protection Console User Guide Encryption Status/Authentication Enrollment/Password Manager v1.12
- DDP Console Introduction
- DDP Console
- Encryption Status
- Enrollments
- Password Manager
- Glossary
Glossary
Credential - A credential is something that proves a person’s identity, such as their ngerprint or their Windows password.
One-Time Password (OTP) - A one-time password is a password that can be used only once and is valid for a limited length of time. OTP
requires that the TPM is present, enabled, and owned. To enable OTP, a mobile device is paired with the computer using the Security
Console and the Security Tools Mobile app. The Security Tools Mobile app generates the password on the mobile device that is used to log
onto the computer at the Windows logon screen. Based on policy, the OTP feature may be used to recover access to the computer if a
password is expired or forgotten, if OTP has not been used to log on to the computer. The OTP feature can be used either for
authentication or for recovery, but not both. OTP security exceeds that of some other authentication methods since the generated
password can be used only once and expires in a short time.
Preboot Authentication (PBA) - Preboot Authentication serves as an extension of the BIOS or boot rmware and guarantees a secure,
tamper-proof environment external to the operating system as a trusted authentication layer. The PBA prevents anything being read from
the hard disk, such as the operating system, until the user has conrmed they have the correct credentials.
Protected – For a self-encrypting drive (SED), a computer is protected once the SED has been activated and the Pre-boot-authentication
(PBA) is deployed.
Self-encrypting Drives (SEDs) - A hard drive that has a built-in encryption mechanism that encrypts all data stored on the media and
decrypts all data leaving the media, automatically. This type of encryption is completely transparent to the user.
Single Sign-On (SSO) - SSO simplies the logon process when multi-factor authentication is enabled at both preboot and Windows logon.
If enabled, authentication is required at preboot only, and users are automatically logged on to Windows. If not enabled, authentication may
be required multiple times.
Trusted Platform Module (TPM) - TPM is a security chip with three major functions: secure storage, measurement, and attestation. The
Encryption client uses TPM for its secure storage function. The TPM can also provide encrypted containers for the software vault. The
TPM is also required for use with the One-time Password feature.
6
Dell Data Protection | Console User Guide
Glossary
33