AHCI Configuration allows you to enable the enhanced AHCI function
Windows XP Service Pack 1 + IAA driver supports AHCI mode). This item only
appears if the previous item SATA – Device 31, Function 2 is set at
Enhanced
.
The options are
Enabled
and
Disabled
.
Boot-time Diagnostic Screen sets if the system diagnostic screen would be
displayed during system boot-up. The options are
Enabled
and
Disabled
.
Security Menu
The Security menu contains the TPM (Trusted Platform Module) setting. TPM
is a component on your computer’s motherboard that is specifically designed
to enhance platform security above-and-beyond the capabilities of today’s
software by providing a protected space for key operations and other
security critical tasks. Using both hardware and software, the TPM protects
encryption and signature keys at their most vulnerable stages – operations
when the keys are being used unencrypted in plain-text form. The TPM is
specifically designed to shield unencrypted keys and platform authentication
information from software-based attacks.
TPM acts as a portal to an unlimited amount of protected data.
– Supports encrypted file systems, etc.
– What types of data are protected? Small data (< 2048 bits)
– Symmetric encryption/decryption keys
– Signing keys
– How is data protected? Encrypted by asymmetric RSA keys
– TPM checks integrity of decrypted data
– Decrypted data may only be released when TPM is in an approved
state
Object Types:
– Storage Root Key (SRK) protects all TPM protected objects
– Storage keys protect (decrypt) child nodes
– Signature keys are always at the leaf of the tree
– Data blobs are always at the leaf of the tree
Object Access:
– Access time depends on position in the tree
– Object caching is supported during a boot cycle
To Next Page
Loading...
