Disk Encryption and Trusted Platform Module
Trusted Platform Module (TPM) is a secure cryptoprocessor embedded in the motherboard that can be used to authenticate a hardware device. Since each TPM chip is unique to a particular device, it is capable of performing platform authentication. It can be used to verify that the system seeking the access is the expected system.
A limited number of disk encryption solutions have support for TPM. These implementations can wrap the decryption key using the TPM, thus tying the hard disk drive (HDD) to a particular device. If the HDD is removed from that particular device and placed in another, the decryption process will fail. Recovery is possible with the decryption password or token.
Although this has the advantage that the disk cannot be removed from the device, it might create a single point of failure in the encryption. For example, if something happens to the TPM or the motherboard, a user would not be able to access the data by connecting the hard drive to another computer, unless that user has a separate recovery key.
Read more about this topic: Disk Encryption
Famous quotes containing the words disk, trusted and/or platform:
“Unloved, that beech will gather brown,
This maple burn itself away;
Unloved, the sun-flower, shining fair,
Ray round with flames her disk of seed,
And many a rose-carnation feed
With summer spice the humming air;”
—Alfred Tennyson (1809–1892)
“Naught was familiar but the heavens, from under whose roof the voyageur never passes; but with their countenance, and the acquaintance we had with river and wood, we trusted to fare well under any circumstances.”
—Henry David Thoreau (1817–1862)
“... a Christian has neither more nor less rights in our association than an atheist. When our platform becomes too narrow for people of all creeds and of no creeds, I myself cannot stand upon it.”
—Susan B. Anthony (1820–1906)