Table 38. System setup options—Security menu(continued)
Security
For additional security, Dell Technologies recommends keeping the Key Storage
Enable option enabled.
NOTE: When disabled, this feature may cause compatibility issues or loss of
functionality in some operating systems.
SHA-256 Allows you to control the hashing algorithm that is used by the TPM. When
enabled, the TPM uses the SHA-256 hashing algorithm. When disabled, the TPM
uses the SHA-1 hash algorithm.
By default, the SHA-256 option is enabled.
For additional security, Dell Technologies recommends keeping the SHA-256
option enabled.
Clear When enabled, the Clear option clears information that is stored in the TPM
after exiting the computer's BIOS. This option returns to the disabled state when
the computer restarts.
By default, the Clear option is disabled.
Dell Technologies recommends enabling the Clear option only when TPM data is
required to be cleared.
TPM State Enables or disables the Trusted Platform Module (TPM). This is the normal
operating state for the Trusted Platform Module (TPM) when you want to use its
complete array of capabilities.
By default, the TPM State option is enabled.
Intel Platform Trust Technology (PTT) Intel PTT is a firmware-based Trusted Platform Module (fTPM) device that is
part of Intel chipsets. It provides credential storage and key management that
can replace the equivalent functionality of a discrete TPM chip.
NOTE: The options that are listed apply to computers with a discrete
Trusted Platform Module (TPM).
PTT On Enables or disables the Intel PTT option.
By default, the PTT On option is enabled.
For additional security, Dell Technologies recommends keeping the PTT On
option enabled.
Physical Presence Interface (PPI) Bypass
for Clear Commands
The PPI Bypass for Clear Commands option allows the operating system to
manage certain aspects of PTT. When enabled, you are not prompted to confirm
changes to the PTT configuration.
By default, the PPI Bypass for Clear Commands option is disabled.
For additional security, Dell Technologies recommends keeping the PPI Bypass
for Clear Commands option disabled.
Clear When enabled, the Clear option clears the information that is stored in the PTT
fTPM after exiting the computer's BIOS. This option returns to the disabled state
when the computer restarts.
By default, the Clear option is disabled.
Dell Technologies recommends enabling the Clear option only when PTT fTPM
data needs to be cleared.
Chassis intrusion
Chassis Intrusion Detection The chassis intrusion detection enables a physical switch that triggers an event
when the computer cover is opened.
When set to Enabled, a notification is displayed on the next boot and the event
is logged in the BIOS Events log.
108 BIOS Setup
To Next Page
Loading...
