Page 1: Table Of Contents
Assuming Trusted Platform Module Ownership ... 7 Recovery Procedures ... 8 How to Recover from a Hard Drive Failure ... 8 How to Recover from a Desktop Board or TPM Failure... 8 Clearing Trusted Platform Module Ownership... 9 Support Links... 10...
Page 2 INFORMATION IN THIS DOCUMENT IS PROVIDED IN CONNECTION ® WITH INTEL PRODUCTS. NO LICENSE, EXPRESS OR IMPLIED, BY ESTOPPEL OR OTHERWISE, TO ANY INTELLECTUAL PROPERTY RIGHTS IS GRANTED BY THIS DOCUMENT. EXCEPT AS PROVIDED IN INTEL'S TERMS AND CONDITIONS OF SALE FOR SUCH PRODUCTS, INTEL ASSUMES NO LIABILITY WHATSOEVER, AND INTEL DISCLAIMS ANY EXPRESS OR IMPLIED WARRANTY, RELATING TO SALE AND/OR USE OF INTEL PRODUCTS INCLUDING...
Page 3: Warning Of Potential Data Loss
In the event of a platform failure and/or replacement of Platform Failure: the desktop board, recovery procedures may allow migratable keys to be recovered and may restore access to encrypted data. All non-migratable keys and their associated data will be lost. Both the Wave Systems* EMBASSY* Security Center and Wave Systems EMBASSY Trust Suite utilize migratable keys.
Page 4: Trusted Platform Module (Tpm)
Trusted Platform Module (TPM) The Trusted Platform Module is a component on the desktop board that is specifically designed to enhance platform security above-and-beyond the capabilities of today’s software by providing a protected space for key operations and other security critical tasks. Using both hardware and software, the TPM protects encryption and signature keys at their most vulnerable stages—operations when the keys are being used unencrypted in plain-text...
Page 5: Password Procedures
The very nature of a non-migratable key is that they can be used on one and only one TPM. In the event of a system or TPM failure, all non-migratable keys and the data associated with them will be inaccessible and unrecoverable. The following precautions and procedures may assist in recovering from any of the previously listed situations.
Page 6: Hard Drive Image Backup Procedures
Hard Drive Image Backup Procedures To allow for emergency recovery from a hard drive failure, frequent images of the hard drive should be created and stored in a secure location. In the event of a hard drive failure, the latest image can be restored to a new hard drive and access to the encrypted data can be re-established.
Page 7: Enabling The Trusted Platform Module
Enabling the Trusted Platform Module The Trusted Platform Module is disabled by default when shipped to insure that the owner/end customer of the system initializes the TPM and configures all security passwords. The owner/end customer should use the following steps to enable the TPM.
Page 8: Recovery Procedures
This recovery procedure may restore the migratable keys from the previously created TPM Key Archive. Replace the desktop board with the same model as the failed board. Start the original OS or restore the original hard drive image. Start the EMBASSY Security Center.
Page 9: Clearing Trusted Platform Module Ownership
Clearing Trusted Platform Module Ownership WARNING Disconnect the desktop board's power supply from its AC power source before you connect or disconnect cables, or install or remove any board components. Failure to do this can result in personal injury or equipment damage.
Page 10: Support Links
Support Links • For assistance with the STMicroelectronics* Trusted Platform Module visit: http://www.st.com • For assistance with the Wave System* EMBASSY* Trusted Suite visit: http://www.wave.com/support/ets.html • For additional information about TPM and enhancing PC security, visit: https://www.trustedcomputinggroup.org Trusted Platform Module Quick Reference...

This manual is also suitable for:

Tpm