HP ProtectTools Security Software 2010 - Technical White Paper
14 
N either the answers to the three questions nor the encryption key are stored in memory. The only 
way to access the encrypted password is to answer the same three questions with exactly the same 
responses used during initial enrollment. 
Embedded Security for HP ProtectTools 
Embedded Security for HP ProtectTools is an add-on module that allows users to configure the TPM 
embedded security chip (Figure 8).  This add-on  module is intended for HP business notebooks, 
desktops and workstations configured with a TPM  embedded security chip designed to the TC G  
standard. Embedded Security for HP ProtectTools version 4.0 or later supports the latest TPM v1.2 
as well as the previous TPM v1.1. 
Fi g u r e 8. Embedded Security for HP ProtectTools 
Embedded Security for H P ProtectTools uses the TPM embedded security chip to help protect against 
unauthorized access to sensitive user data and credentials. Features accessed through Embedded 
Security for H P ProtectTools include: 
•  Administra tive functions such a s  taking ownership a nd mana ging the owner pa ss phra se 
•  User functions such a s user enrollment and management of user pass phrases 
•  C onfigura tion options including setting up enha nced M icrosoft Enc rypted  File  System (E FS )   a nd 
Personal Secure Drive for helping to protec t user da ta  as well a s functions such a s ba cking up a nd 
restori ng the key hierarchy as well as key migration. 
Embedded Security for HP ProtectTools is supported on all HP business notebooks, desktops and 
workstations configured with a qualified TPM embedded security chip. See Ta ble 6   of thi s w hi te 
paper for more information on support by platform. 










