The processor allows to create cryptographic keys for encryption so that only the TPM can decipher the information encrypted with said keys. A TPM has its own unique key called SRK ( Storage Root Key ) that is written on the chip itself when it is manufactured. The private key of the SRK is never exposed to other components or even the same equipment, and can not be read by removing the chip, so it allows to ensure communication with them. It is installed on the PC motherboard and communicates directly with the rest of its hardware components . It is a microprocessor specialized in cryptographic functions. TPM is the acronym for Trusted Platform Module. Modern systems have been using a special chip on board called TPM. įor this we have several options, but if we can choose, it would be best to take advantage of the TPM chip of our machine, if it has one.
![tpm for bitlocker on an hp dc9700 tpm for bitlocker on an hp dc9700](https://i.stack.imgur.com/eTv16.png)
The fact is that for our safety and that of the company we should protect our equipment in the best possible way to avoid unwanted access in case someone has physical access to it. And that means today completely encrypt the hard drives.
#TPM FOR BITLOCKER ON AN HP DC9700 CODE#
If you have physical access to a machine it is quite simple to be able to skip all the security and access using any of the existing user accounts, changing the password. It is also possible to extract the hard drive, puncture it to another computer and use password cracking tools to find out the access code of any account, even those of the company’s domain. This case is especially dangerous because, once inside the team, with the same credentials we can connect to the company’s network through the VPN that all companies usually have. Also, if we store keys or other valuable information on the machine we should never do it without encrypt that information.
#TPM FOR BITLOCKER ON AN HP DC9700 PORTABLE#
Therefore It is important to protect the data of any portable system that we manage, especially if it is a company computer. Not only because of the information we have, but because if we lose or steal a business computer, the assailant could have access to the entire internal network of the organization.
![tpm for bitlocker on an hp dc9700 tpm for bitlocker on an hp dc9700](https://weikingteh.files.wordpress.com/2011/04/image1.png)
Anyone who runs a computer, especially if it is a laptop, there is a risk of losing it or being stolen. Even a desktop can be compromised and there are bands that steal in companies only by the data they can get from PCs.