Disk Encryption and Trusted Platform Module
Trusted Platform Module (TPM) is a secure cryptoprocessor embedded in the motherboard that can be used to authenticate a hardware device. Since each TPM chip is unique to a particular device, it is capable of performing platform authentication. It can be used to verify that the system seeking the access is the expected system.
A limited number of disk encryption solutions have support for TPM. These implementations can wrap the decryption key using the TPM, thus tying the hard disk drive (HDD) to a particular device. If the HDD is removed from that particular device and placed in another, the decryption process will fail. Recovery is possible with the decryption password or token.
Although this has the advantage that the disk cannot be removed from the device, it might create a single point of failure in the encryption. For example, if something happens to the TPM or the motherboard, a user would not be able to access the data by connecting the hard drive to another computer, unless that user has a separate recovery key.
Read more about this topic: Disk Encryption
Famous quotes containing the words disk, trusted and/or platform:
“Unloved, that beech will gather brown,
This maple burn itself away;
Unloved, the sun-flower, shining fair,
Ray round with flames her disk of seed,
And many a rose-carnation feed
With summer spice the humming air;”
—Alfred Tennyson (1809–1892)
“Every one, more or less, loves Power, yet those who most wish for it are seldom the fittest to be trusted with it.”
—Samuel Richardson (1689–1761)
“The use of literature is to afford us a platform whence we may command a view of our present life, a purchase by which we may move it.”
—Ralph Waldo Emerson (1803–1882)