Why the Army is delayed-per SKS
From today's conference transcript:
We think that the pre-boot environment is going to be a very interesting place. Once you start to encrypt all your drives, you've heard from a dozen companies today about strong authentication. What they don't know is that all their software won't work in a couple of years. And the reason is, once they have a Full Disk Encrypting drive, I have no operating system anymore. All my authentication takes place without an operating system. So, you have to build authentication independent of the OS environment. And so, it's a very interesting constraint that come along with that because clearly in BIOS you have a lot less space. And this is going to be true for anybody who turns on Full Disk Encryption even within the context of what Microsoft has done is a very limited OS that works with Microsoft Vista BitLocker.
****snippage*****
Just a simple fact, that all strong authentications are moving pre-OS. Nobody here is saying that. Your army just discovered this. They just went on and said we are going to put all our machines to have data protection in the machines and then they discovered that in the act of that they are fundamentally breaking all of their strong authentication solutions
-end of transcript-
My comments:
Sounds like there are software conflicts between using TPMs and their previous authentication systems.
It also sounds like once they get them resolved, they are heading to TPMs, and would have adopted use of them already if not for this.
AI
