Manualshelf

HP Sure Start

ManualsBrandsHP ManualsComputersEliteDesk 705 G4 Mini Desktop Computer
10111213141516171819
16
Technical white paper | HP Sure Start
Table 1: Critical Platform Device Firmware Protected by HP Sure Start or other technology
NIST SP 800-193 Platform
Architecture Reference
HP Commercial PC critical platform
device rmware
Protected by
1. Embedded Controller (EC)/Super I/O
(SIO)
4. Host Processor
6. Graphics Processing Unit (GPU) when
implemented as Unied Memory
Architecture (UMA)
8. Host Controller (HC) for mass storage
device
11. Host Processor Boot Firmware
12. Platform Runtime Firmware
13. Power Supply
15. Fans
HP ESC rmware
HP UEFI BIOS rmware
HP Sure Start Gen3 and Gen4
2. Trusted Platform Module (TPM) Discrete TPM component rmware
1
TPM
3. Baseboard Management Controller
(BMC)/Management Engine (ME)
Intel Management Engine rmware
AMD Secure Processor rmware
5. Network Interface Controller (NIC) Intel integrated GbE NIC rmware
2
HP Sure Start Gen3 and Gen4
7. Serial Peripheral Interface (SPI) Flash Descriptor rmware HP Sure Start Gen3 and Gen4
9. Hard Disk Drive (HDD)/Solid State Drive
(SSD)
HDD/SSD rmware
3
10. Embedded MultiMediaCard (eMMC)/
Universal Flash Storage (UFS)
N/A
4
N/A
4
14. Glue Logic (CPLD’s, FPGA’s) N/A
4
N/A
4
1
This component is not critical to boot of the platform.
2
This component is not critical to minimally restore operation of the system but is required to establish Ethernet connec-
tivity in environments where that connectivity is deemed critical to platform resiliency.
3
Mass storage devices are outside the scope of this document. Resiliency capabilities vary by storage supplier and by
storage device. Not all suppliers or devices currently meet all Resiliency requirements in 800-193.
4
No devices of this type are included.
Acronyms
BIOS – Basic Input/Output System (aka host processor boot rmware)
CPU – Central processing unit
ESC – HP Endpoint Security Controller
Gen3+ – Applies to both HP Sure Start Gen3 and HP Sure Start Gen4
Gen4 – Applies to only HP Sure Start Gen4
HMAC – Hash-based message authentication code
HW – Hardware
OS – Operating system
POST – Power-On Self-Test
RoT – Root of Trust (dened in NIST SP 800-193)
RTD – Root of Trust for Detection (dened in NIST SP 800-193)
RTRec – Root of Trust for Recovery (dened in NIST SP 800-193)
SMM – System Management Mode
UEFI – Unied Extensible Firmware Interface
Technical white paper | HP Sure Start