Disk Encryption and Trusted Platform Module
Trusted Platform Module (TPM) is a secure cryptoprocessor embedded in the motherboard that can be used to authenticate a hardware device. Since each TPM chip is unique to a particular device, it is capable of performing platform authentication. It can be used to verify that the system seeking the access is the expected system.
A limited number of disk encryption solutions have support for TPM. These implementations can wrap the decryption key using the TPM, thus tying the hard disk drive (HDD) to a particular device. If the HDD is removed from that particular device and placed in another, the decryption process will fail. Recovery is possible with the decryption password or token.
Although this has the advantage that the disk cannot be removed from the device, it might create a single point of failure in the encryption. For example, if something happens to the TPM or the motherboard, a user would not be able to access the data by connecting the hard drive to another computer, unless that user has a separate recovery key.
Read more about this topic: Disk Encryption
Famous quotes containing the words disk, trusted and/or platform:
“Unloved, that beech will gather brown,
This maple burn itself away;
Unloved, the sun-flower, shining fair,
Ray round with flames her disk of seed,
And many a rose-carnation feed
With summer spice the humming air;”
—Alfred Tennyson (1809–1892)
“Every one, more or less, loves Power, yet those who most wish for it are seldom the fittest to be trusted with it.”
—Samuel Richardson (1689–1761)
“Do you know I believe that [William Jennings] Bryan will force his nomination on the Democrats again. I believe he will either do this by advocating Prohibition, or else he will run on a Prohibition platform independent of the Democrats. But you will see that the year before the election he will organize a mammoth lecture tour and will make Prohibition the leading note of every address.”
—William Howard Taft (1857–1930)