HP Client Security Commercial Managed IT Software Technical whitepaper
HP Client Security Technical Whitepaper
August 2016
747889-002
© Copyright 2016 HP Development Company, L.P.
HP Drive Encryption (HPDE) 26
13 HP Drive Encryption (HPDE)
HP Drive Encryption (HPDE) shown in Figure 6 provides complete data protection by encrypting your computer's data so it
becomes unreadable to an unauthorized person. If an encrypted drive is removed from the system and attached to a USB
enclosure, it cannot be read from another PC without proper authorization.
Figure 6 HP Drive Encryption (HPDE)
When the drive is encrypted, the Drive Encryption login window displays before the Windows® operating system starts.
Windows requires authentication in the form of a password, smart card or fingerprint before starting.
HP Client Security allows a Windows administrator to perform the following tasks:
Encrypt or decrypt a partition on an individual hard drive (HDD) or solid state drive (SSD) using software encryption
(internal SATA drive and eSATA drive only).
Encrypt or decrypt OPAL Self Encrypting Drive (SED) using hardware encryption.
Provide enhanced security by disabling Sleep or Standby to ensure that Drive Encryption pre-boot authentication is
always required.
Create encryption recovery key.
Recover access to an encrypted computer using encryption recovery key and HP SpareKey.
Enable Drive Encryption pre-boot authentication using a password, registered fingerprint, or PIN for supported Smart
Cards.