Table of Contents
Advertisement
Trusted Computing
The motherboard supports TPM 2.0. The following Trusted Platform Module (TPM) information
is displayed if a TPM 2.0 module is detected:
•
Firmware Version
•
Vendor Name
Security Device Support
Select Enable to enable BIOS support for onboard security devices, which are not displayed
in the OS. If this feature is set to Enable, TCG EFI protocol and INT1A interface will not be
available. The options are Disable and Enable.
*When "Security Device Support" is set to Enable, the following information will display:
•
Active PCR banks
•
Available PCR banks
SHA256 PCR Bank (Available when "Security Device Support" is set to Enable)
Select Enabled to enable SHA256 PCR Bank support to enhance system integrity and data
security. The options are Disabled and Enabled.
Pending Operation (Available when "Security Device Support" is set to Enable)
Use this feature to schedule a TPM-related operation to be performed by a security (TPM)
device at the next system boot to enhance system data integrity. Your system will reboot to
carry out a pending TPM operation. The options are None and TPM Clear.
Note: Your system will reboot to carry out a pending TPM operation.
Platform Hierarchy (Available when "Security Device Support" is set to Enable) (for
TPM Version 2.0 and above)
Select Enabled for TPM Platform Hierarchy support. This feature allows the manufacturer to
utilize the cryptographic algorithm to define a constant key or a fixed set of keys to be used for
initial system boot. These early boot codes are shipped with the platform and are included in
the list of "public keys." During system boot, the platform firmware uses the trusted public keys
to verify a digital signature in an attempt to manage and control the security of the platform
firmware used in a host system via a TPM device. The options are Disabled and Enabled.
91
Chapter 4: UEFI BIOS
Advertisement
Table of Contents
