Authentication
Trusted Platform Module (TPM): The Next Authentication Token
Virtually every business laptop comes with an embedded security token. Surprised? About 300,000,000 PCs have shipped with a chip called the Trusted Platform Module (TPM), with capabilities beyond traditional tokens or smart cards. The key differentiator: TPMs uniquely support both user and machine authentication in one token-a simple, yet revolutionary concept, ensuring only authorized users and authorized PCs are on the network.
- Strengthen certificate-based email encryption with TPM key protection. Support for all X.509 certificate-based email encryption.
- Use the TPM for authentication to provide a first factor: "something you have". An additional factor can be added for security such as a PIN or password for "something you know". More secure than software-based certificates and tokens. Lower TCO compared to smart cards and hardware tokens. The TPM is the only token that supports both strong user and machine authentication.
- Meet enterprise multi-factor authentication requirements for remote access. With a TPM, achieve a hardware level of security without the costs and hassles associated with deploying and managing smart cards or hardware tokens.
- Beyond data encryption, deploy stronger authentication to wireless networks. The TPM securely identifies a user or machine and automatically integrates with the 802.1x authentication framework.
"Evil Maid" Attacks on Encrypted Hard Drives
"The real defense here is trusted boot, something Trusted Computing is supposed to enable...BitLocker...can prevent these sorts of attacks if the computer has a TPM module, version 1.2 or later, on the motherboard."
Five Great Reasons to Adopt Trusted Computing
Trusted Computing is perhaps one of the most misunderstood (willfully misunderstood, to be frank about it) emergent technologies for computer security.
Stopping Rootkits at the Network Edge
Keeping remote users' laptops healthy is not an easy task these days. Infections are everywhere, and once these PCs leave the shelter of an enterprise network, they can easily get filled with rootkits, trojan horses, spyware, and viruses.
Enterprise Grade Deployment and Management of TPM-Enabled PCs
Infineon Technologies AG presented at RSA Conference 2009 on Enterprise Grade Deployment and Management of TPM-Enabled PCs