HP ProtectTools Security Software 2010 - Technical White Paper
14
N either the answers to the three questions nor the encryption key are stored in memory. The only
way to access the encrypted password is to answer the same three questions with exactly the same
responses used during initial enrollment.
Embedded Security for HP ProtectTools
Embedded Security for HP ProtectTools is an add-on module that allows users to configure the TPM
embedded security chip (Figure 8). This add-on module is intended for HP business notebooks,
desktops and workstations configured with a TPM embedded security chip designed to the TC G
standard. Embedded Security for HP ProtectTools version 4.0 or later supports the latest TPM v1.2
as well as the previous TPM v1.1.
Fi g u r e 8. Embedded Security for HP ProtectTools
Embedded Security for H P ProtectTools uses the TPM embedded security chip to help protect against
unauthorized access to sensitive user data and credentials. Features accessed through Embedded
Security for H P ProtectTools include:
• Administra tive functions such a s taking ownership a nd mana ging the owner pa ss phra se
• User functions such a s user enrollment and management of user pass phrases
• C onfigura tion options including setting up enha nced M icrosoft Enc rypted File System (E FS ) a nd
Personal Secure Drive for helping to protec t user da ta as well a s functions such a s ba cking up a nd
restori ng the key hierarchy as well as key migration.
Embedded Security for HP ProtectTools is supported on all HP business notebooks, desktops and
workstations configured with a qualified TPM embedded security chip. See Ta ble 6 of thi s w hi te
paper for more information on support by platform.