Dell XPS 14 9440 Owner's Manual page 92

Table 33. System setup options—Security menu (continued)
Security
Clear
PPI Bypass for Clear Commands
Intel Total Memory Encryption
Multi-Key Total Memory Encryption (Up to
16 keys)
Chassis Intrusion
SMM Security Mitigation
SMM Security Mitigation
Data Wipe on Next Boot
Start Data Wipe
Absolute
Absolute
92 BIOS Setup
For additional security, Dell Technologies recommends keeping the SHA-256
option enabled.
When enabled, the Clear option clears information that is stored in the TPM
after exiting the computer's BIOS. This option returns to the disabled state when
the computer restarts.
By default, the Clear option is disabled.
Dell Technologies recommends enabling the Clear option only when TPM data is
required to be cleared.
The PPI Bypass for Clear Commands option allows the operating system to
manage certain aspects of PTT. When enabled, you are not prompted to confirm
changes to the PTT configuration.
By default, the PPI Bypass for Clear Commands option is disabled.
For additional security, Dell Technologies recommends keeping the PPI Bypass
for Clear Commands option disabled.
Total Memory Encryption is used to protect memory from physical attacks
including freeze spray, probing DDR to read the cycles, and others.
Default: OFF
Controls the chassis intrusion feature.
Default: Disabled
Enables or disables additional UEFI SMM Security Mitigation protections.
Default: ON
NOTE: This feature may cause compatibility issues or loss of functionality
with some legacy tools and applications.
Data Wipe is a secure wipe operation that deletes information from a storage
device.
CAUTION: The secure Data Wipe operation deletes information in a
way that it cannot be reconstructed.
Commands such as delete and format in the operating system may remove files
from showing up in the file system. However, they can be reconstructed through
forensic means as they are still represented on the physical media. Data Wipe
prevents this reconstruction and is not recoverable.
When enabled, the data wipe option will prompt to wipe any storage devices that
are connected to the computer on the next boot.
By default, the Start Data Wipe option is disabled.
Absolute Software provides various cyber security solutions, some requiring
software preloaded on Dell computers and integrated into the BIOS. To use these
features, you must enable the Absolute BIOS setting and contact Absolute for
configuration and activation.
By default, the Absolute option is enabled.
For additional security, Dell Technologies recommends keeping the Absolute
option enabled.