Manualshelf

HP Sure Start for AMD Technical whitepaper

ManualsBrandsHP ManualsDesktopsHP EliteDesk 705 G5 Small Form Factor PC
12345678910
July 2019
L75214-001
HP Sure Start for AMD
© Copyright 2019 HP Development Company, L.P.
1 Introduction 6
Protected storageStrong cryptographic methods to store BIOS settings, user credentials, and other settings in the HP
Endpoint Security Controller hardware to provide integrity protection, tamper detection, and confidentially protection for that
data
ManageabilityAdministrator management of HP Sure Start for AMD capabilities with the Manageability Integration Kit (MIK)
plug-in for Microsoft® System Center Configuration Manager (SCCM)
1.3 Third-party security certification
The HP Endpoint Security Controller hardware used in HP Sure Start for AMD has undergone third-party security assessment and
has been certified to provide hardware enforcement so that only authorized firmware can start on the target PC.
Assurance that a security solution works as stated is a critical piece of any purchase decision related to security products. And
because a reputation for quality can only go so far, HP has exposed the HP Endpoint Security Controller inner workings for review
and testing by an independent and accredited laboratory to validate that it works as claimed per publicly available criteria,
methodology, and processes.
1.4 Cyber-resilient design
Not only does HP Sure Start for AMD provide enhanced BIOS protection beyond the industry standard approach, but it is designed
from the hardware up to provide unmatched platform cyber-resilience to ensure BIOS recovery even in the event of a breach or
destructive attack. HP business PCs with HP Sure Start for AMD exceed the National Institute of Standards and Technology (NIST)
Platform Firmware Resiliency guidelines (Special Publication 800-193) for host processor boot firmware and other critical
platform device firmware, as discussed in Appendix A. NIST SP 800-193 is one of the leading public sector efforts to formalize
requirements for cyber-resilient platforms. For more details about HP Sure Start for AMD and NIST 800-193, see Appendix A.
The HP Sure Start for AMD controller hardware has been certified per the CSPN certification framework.