Boards
News
Market Data
Markets
Discover
Discover
AI Subscribe Login/Register account icon
S&P 500
7,580.06
(
0.22%
)
US TECH 100
29,506.00
(
0.28%
)
Dow Jones
51,032.46
(
0.72%
)
Brent Oil
91.36
(
0.00%
)
Bitcoin
73,489.71
(
0.17%
)
News Focus
News Focus
Post# of 252527
Next 10
Public Reply Private Reply New Post
Keep Last Read
Replies (1) Keep Next 10 Report Keyboard Shortcuts
Replies (1) Next 10 Prev Next

RootOfTrust

Send PM Follow Ignore
Followers 35
Posts 5775
Boards Moderated 0
Alias Born 07/22/2003

RootOfTrust

Re: Weby post# 190796

Monday, 03/15/2010 11:34:28 AM

Monday, March 15, 2010 11:34:28 AM

Post# of 252527
Weby, you wrote:

I'm a consumer, typing on a computer with a TPM and right now it's essentially useless.

Actually if you have initialized your TPM, and use your pre-boot authentication environment, it's impossible for an attacker who's stolen your machine to boot it up. The fingerprint keys are stored encrypted on the TPM. Now, if your drive is not an SED, the thief in possession of your machine might be able to read your files w/o booting the machine up? I believe so.

So, you and I (I have a Latitude D630 w/ activated TPM) have secured our machine from being booted up by a thief in physical possession of it...our TPM enables that. An SED (or trusted drive that requires authentication to the drive) however, accomplishes the same thing and more (data is encrypted) w/o using a TPM, because the drive is completely locked down independent of the TPM.

Btw, my pre-boot is beautiful. One swipe of my finger and the machine goes from pre-boot to Windows every time...either from the power-up or from sleep/hibernation.

Public Reply Private Reply New Post
Keep Last Read
Replies (1) Keep Last Read Next 10 Report Keyboard Shortcuts
Replies (1) Next 10 Prev Next

Discover What Traders Are Watching

Explore small cap ideas before they hit the headlines.

Join Today