UK Info Assurance Group CESG Publishes Top Tips for Trusted Platform Modules
CESG is the UK Government's National Technical Authority for IA, "responsible for enabling secure and trusted knowledge sharing to help our customers achieve their business aim". CESG has long been involved in TCG activities as a liaison member of the Group and has been supportive of the Trusted Platform Module based on Trusted Computing Group specifications.
This week, CESG published a new guidance document to aid government departments in protecting their systems and information. This document, CESG IA Top Tips 2011/01 can be found here.
CESG notes that "...remote access to secure networks becomes ubiquitous across government, it is essential that data on mobile platforms is protected and that all devices connecting to a network can be identified and managed. TPMs can provide additional security and assist with device management at low cost. Government departments should consider whether cost savings can be made by introducing TPMs."
Tips including using the TPM for data protection, secure device identity, signing of configuration and health status reports and verified boot.
Details are noted in the document, linked above.
Categories: Data Protection, News & Events