Manualshelf

Using HP DigitalPass One Time Password protection - Technical White Paper

ManualsBrandsHP ManualsDesktopsHP Compaq Elite 8300 Small Form Factor PC
123456789
3
How DigitalPass works
HP DigitalPass uses a hardware-generated passcode that is used only once for a short period of time and supplied
invisibly to participating websites. This passcode provides a second factor of authentication to the traditional user name
and passwordproviding something you know (user ID and password) plus something you have (HP DigitalPass). The
passcode generator is protected in the PC hardware and cannot be accessed from the hard drive or the BIOS.
To begin using HP DigitalPass, Credential Manager for HP ProtectTools should be utilized to activate the VIP Access
Credential. Beyond Credential Manager, participating websites that utilize this advanced security protection will, during
initial engagement, invite users to “bind” their passwords and the OTP.
Required components and architecture
HP DigitalPass requires the following components for HP DigitalPass functionality.
Intel 2
nd
generation Core i3, i5, or i7 vPro-capable processor and chipset
HP ProtectTools Security Manager
Intel Management Engine Interface (MEI) driver version 8.x.x.x.x
Host Embedded Controller Interface (HECI)
BIOS containing management engine firmware ME FW8.x.x.x
HP DigitalPass / One Time Password component
NOTE: PC models introduced in 2011 use ME FW ver. 7 and MEI driver ver 7.
HP DigitalPass architecture is shown in Figure 1.
Figure 1: HP DigitalPass architecture