Disk Encryption and Trusted Platform Module
Trusted Platform Module (TPM) is a secure cryptoprocessor embedded in the motherboard that can be used to authenticate a hardware device. Since each TPM chip is unique to a particular device, it is capable of performing platform authentication. It can be used to verify that the system seeking the access is the expected system.
A limited number of disk encryption solutions have support for TPM. These implementations can wrap the decryption key using the TPM, thus tying the hard disk drive (HDD) to a particular device. If the HDD is removed from that particular device and placed in another, the decryption process will fail. Recovery is possible with the decryption password or token.
Although this has the advantage that the disk cannot be removed from the device, it might create a single point of failure in the encryption. For example, if something happens to the TPM or the motherboard, a user would not be able to access the data by connecting the hard drive to another computer, unless that user has a separate recovery key.
Read more about this topic: Disk Encryption
Famous quotes containing the words disk, trusted and/or platform:
“Unloved, that beech will gather brown,
This maple burn itself away;
Unloved, the sun-flower, shining fair,
Ray round with flames her disk of seed,
And many a rose-carnation feed
With summer spice the humming air;”
—Alfred Tennyson (1809–1892)
“Man, her last work, who seemed so fair,
Such splendid purpose in his eyes,
Who rolled the psalm to wintry skies,
Who built him fanes of fruitless prayer,
Who trusted God was love indeed
And love Creation’s final law—
Though Nature, red in tooth and claw
With ravine, shrieked against his creed—”
—Alfred Tennyson (1809–1892)
“The use of literature is to afford us a platform whence we may command a view of our present life, a purchase by which we may move it.”
—Ralph Waldo Emerson (1803–1882)