Computer Setup (F10) Utility menu descriptions (continued)
Chapter 4 System management
Provides these options:
Data Execution Prevention—Enables or disables Data Execution Prevention mode in the
CPUs. This mode prohibits code from running in pages that were set up as data pages, and
prevents attacks such as buffer overflows. Operating system support is required for this
Virtualization Technology (VTx)—Enables or disables Intel® Virtualization Technology to
increase computer performance.
Virtualization Technology for Directed I/O (VT–d2)Enables a virtual machine to gain exclusive
control of a hardware device, such as a graphics card.
Embedded Security Device—This option becomes available if Embedded Device is set to
Embedded Security Device (Hidden or Available) turns the Trusted Platform Mechanism
(TPM) on and off. Device Hidden is the default. If this option is made available, the following
options become available:
Power-On Authentication Support—Enables and disables an authentication feature that
requires you to enter a TPM user key password to start the computer. This feature uses
the TPM to generate and store the authentication password.
Reset Authentication Credential—Resets the authentication functionality and clears
To enable the Embedded Security Device and to access any security features associated
with the device, you must enter a setup password.
Setting a device to Available enables the operating system to access the device. Hidden
makes the device unavailable. It is disabled by the BIOS and cannot be enabled by the
Intel IO Virtualization—Enables or disables Virtualization Technology to increase computer I/
Embedded Security Device Support—Enables the computer to leverage the trusted platform
OS Management of Embedded Security Device—Enables or disables the ability of the
operating system to control the TPM device, including turning it on and off, initializing it, and
Reset of Embedded Security Device through OS—Enables or disables the ability of the
operating system to reset the TPM.
Enables the administrator to set the security level of each setup feature.
Enables or disables:
Runtime Power Management
Idle Power Savings
ACPI S3 Hard Disk Reset
ACPI S3 PS/2 Mouse Wakeup
USB Wake on Device Insertion
Unique Sleep State Blink Rates