I do not have time to try this yet (will try next weekend) but for people brave enough to confirm in their Thinkpads, I think the relevant portions to upgrade to TPM version 2.0 are:Ĭreate supervisor password in bios (please take note of the password before saving the bios config).ĭisable BitLocker if enabled in Windows 10.ĭownload SRSetup (see Lenovo link found in thinkdeploy webpage above).Ĭlear TPM in Windows 10 (google for procedure). This is a more secure alternative than storing them inside the software on your hard drive.I found a guide from 2018 detailing how to upgrade TPM version from 1.2 to 2.0 using MS configuration manager. You can safely store your encryption keys, certificates, and passwords used for accessing online services inside a TPM. If the TPM chip detects a compromise, it boots up in Quarantine mode so you can troubleshoot the issue. Quarantine ModeĪnother great benefit of TPM is the automatic shift to the Quarantine mode in case of a compromise. If TPM does detect a compromise, it simply refuses to boot the system. Ensuring your OS is not tampered with, adds a layer of security. Protects from Malicious Boot Loader MalwareĬertain specialized malware can infect or re-write the boot loader even before any antivirus software has a chance to act. Some malware types can even virtualize your OS to spy on everything while going undetected by online systems.Ī TPM can protect by establishing a chain of trust as it verifies the boot loader first and allows an Early Launch Anti-Malware to be started after that. By using a combination of software and hardware algorithms, TPM protects plain-text data by encrypting it. Provides Data EncryptionĮven with the rise in security awareness, there is still a huge occurrence of unencrypted data transmissions. Here are some of the major benefits that TPM offers.
0 kommentar(er)
