Secure Boot screen options
Option Description
Secure Boot
Enable
This option enables or disables the Secure Boot feature.
• Disabled
• Enabled
Default setting: Enabled.
Expert Key
Management
Allows you to manipulate the security key databases only if the system is in Custom
Mode. The Enable Custom Mode option is disabled by default. The options are:
• PK
• KEK
• db
• dbx
If you enable the Custom Mode, the relevant options for PK, KEK, db, and dbx
appear. The options are:
• Save to File—Saves the key to a user-selected file
• Replace from File—Replaces the current key with a key from a user-selected
file
• Append from File—Adds a key to the current database from a user-selected file
• Delete—Deletes the selected key
• Reset All Keys—Resets to default setting
• Delete All Keys—Deletes all the keys
NOTE: If you disable the Custom Mode, all the changes made will be erased
and the keys will restore to default settings.
Intel Software Guard Extensions screen options
Option Description
Intel SGX Enable This field specifies you to provide a secured environment for running code/storing
sensitive information in the context of the main OS. The options are:
• Disabled
• Enabled
Default setting: Disabled
Enclave Memory
Size
This option sets SGX Enclave Reserve Memory Size. The options are:
• 32 MB
• 64 MB
73
To Next Page
Loading...
