HP ProtectTools - Windows Vista and Windows XP
cryptographic service provider (CSP). Provider or library of cryptographic algorithms that can be used in a
well-defined interface to perform particular cryptographic functions.
cryptography. Practice of encrypting and decrypting data so that it can be decoded only by specific individuals.
decryption. Procedure used in cryptography to convert encrypted data into plain text.
digital certificate. Electronic credentials that confirm the identity of an individual or a company by binding the
identity of the digital certificate owner to a pair of electronic keys that are used to sign digital information.
digital signature. Data sent with a file that verifies the sender of the material, and that the file has not been
modified after it was signed.
domain. Group of computers that are part of a network and share a common directory database. Domains are
uniquely named, and each has a set of common rules and procedures.
Drive Encryption key recovery service. The SafeBoot Recovery Service. It stores a copy of the encryption
key, enabling you to access your computer if you forget your password and do not have access to your local backup
key. You must create an account with the service to set up online access to your backup key.
Drive Encryption logon screen. A logon screen that is displayed before Windows starts up. Users must enter
their Windows user name and the password or Java Card PIN. Under most circumstances, entering the correct
information at the Drive Encryption logon screen allows access directly into Windows without having to log in again
at the Windows logon screen.
DriveLock Security feature that links the hard drive to a user and requires the user to correctly type the DriveLock
password when the computer starts up.
emergency recovery archive. Protected storage area that allows the reencryption of basic user keys from one
platform owner key to another.
Encryption File System (EFS). System that encrypts all files and subfolders within the selected folder.
encryption. Procedure, such as use of an algorithm, employed in cryptography to convert plain text into cipher
text in order to prevent unauthorized recipients from reading that data. There are many types of data encryption,
and they are the basis of network security. Common types include Data Encryption Standard and public-key
encryption.
free space bleaching. The secure writing of random data over deleted assets to distort the contents of the
deleted asset.
HP SpareKey. Backup copy of drive encryption key.
identity. In the HP ProtectTools Credential Manager, a group of credentials and settings that is handled like an
account or profile for a particular user.
Java Card. A removable card that is inserted into the computer. It contains identification information for logon.
Logging in with a Java Card at the Drive Encryption logon screen requires that you insert the Java Card and type
your user name and Java Card PIN.
key sequence. A combination of specific keys that, when pressed, initiates an automatic shred—for example,
ctrl+alt+s.
manual shred. Immediate shredding of an asset or selected assets, which bypasses the automatic shred
schedule.
migration. A task that allows the management, restoration, and transfer of Privacy Manager Certificates and
Trusted Contacts.
Glossary 93










