Dell Inspiron 3030 Desktop Owners Manual - Page 85

Table 31. System setup options-Security menu continued, PPI Bypass for Clear Commands

Get Dell Inspiron 3030 Desktop PDF manuals and user guides View all Dell Inspiron 3030 Desktop manuals
Add to My Manuals
Save this manual to your list of manuals

Page 85 highlights

Table 31. System setup options-Security menu (continued) Security For additional security, Dell Technologies recommends keeping the PPI Bypass for Disable Commands option disabled. Physical Presence Interface (PPI) Bypass for Clear Commands By default, the PPI Bypass for Clear Commands option is disabled. For additional security, Dell Technologies recommends keeping the PPI Bypass for Clear Commands option disabled. Attestation Enable The Attestation Enable option controls the endorsement hierarchy of TPM. Disabling the Attestation Enable option prevents TPM from being used to digitally sign certificates. By default, the Attestation Enable option is enabled. For additional security, Dell Technologies recommends keeping the Attestation Enable option enabled. NOTE: When disabled, this feature may cause compatibility issues or loss of functionality in some operating systems. Key Storage Enable The Key Storage Enable option controls the storage hierarchy of TPM, which is used to store digital keys. Disabling the Key Storage Enable option restricts the ability of TPM to store owner's data. By default, the Key Storage Enable option is enabled. For additional security, Dell Technologies recommends keeping the Key Storage Enable option enabled. NOTE: When disabled, this feature may cause compatibility issues or loss of functionality in some operating systems. SHA-256 Allows you to control the hashing algorithm that is used by the TPM. When enabled, the TPM uses the SHA-256 hashing algorithm. When disabled, the TPM uses the SHA-1 hash algorithm. By default, the SHA-256 option is enabled. For additional security, Dell Technologies recommends keeping the SHA-256 option enabled. Clear When enabled, the Clear option clears information that is stored in the TPM after exiting the computer's BIOS. This option returns to the disabled state when the computer restarts. By default, the Clear option is disabled. Dell Technologies recommends enabling the Clear option only when TPM data is required to be cleared. TPM State Enables or disables the Trusted Platform Module (TPM). This is the normal operating state for the Trusted Platform Module (TPM) when you want to use its complete array of capabilities. By default, the TPM State option is enabled. Intel® Platform Trust Technology Intel PTT is a firmware-based Trusted Platform Module (fTPM) device that is part of Intel chipsets. It provides credential storage and key management that can replace the equivalent functionality of a discrete TPM chip. NOTE: The options that are listed apply to computers with a discrete Trusted Platform Module (TPM). PTT On Enables or disables the Intel PTT option. By default, the PTT On option is enabled. For additional security, Dell Technologies recommends keeping the PTT On option enabled. BIOS Setup 85

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
Table 31. System setup options—Security menu (continued)
Security
For additional security, Dell Technologies recommends keeping the
PPI
Bypass for Disable Commands
option disabled.
Physical Presence Interface (PPI) Bypass
for Clear Commands
By default, the
PPI Bypass for Clear Commands
option is disabled.
For additional security, Dell Technologies recommends keeping the
PPI
Bypass for Clear Commands
option disabled.
Attestation Enable
The
Attestation Enable
option controls the endorsement hierarchy of TPM.
Disabling the
Attestation Enable
option prevents TPM from being used to
digitally sign certificates.
By default, the
Attestation Enable
option is enabled.
For additional security, Dell Technologies recommends keeping the
Attestation Enable
option enabled.
NOTE:
When disabled, this feature may cause compatibility issues or loss
of functionality in some operating systems.
Key Storage Enable
The
Key Storage Enable
option controls the storage hierarchy of TPM, which
is used to store digital keys. Disabling the
Key Storage Enable
option restricts
the ability of TPM to store owner's data.
By default, the
Key Storage Enable
option is enabled.
For additional security, Dell Technologies recommends keeping the
Key
Storage Enable
option enabled.
NOTE:
When disabled, this feature may cause compatibility issues or loss
of functionality in some operating systems.
SHA-256
Allows you to control the hashing algorithm that is used by the TPM. When
enabled, the TPM uses the SHA-256 hashing algorithm. When disabled, the
TPM uses the SHA-1 hash algorithm.
By default, the
SHA-256
option is enabled.
For additional security, Dell Technologies recommends keeping the
SHA-256
option enabled.
Clear
When enabled, the
Clear
option clears information that is stored in the TPM
after exiting the computer's BIOS. This option returns to the disabled state
when the computer restarts.
By default, the
Clear
option is disabled.
Dell Technologies recommends enabling the
Clear
option only when TPM data
is required to be cleared.
TPM State
Enables or disables the Trusted Platform Module (TPM). This is the normal
operating state for the Trusted Platform Module (TPM) when you want to use
its complete array of capabilities.
By default, the
TPM State
option is enabled.
Intel® Platform Trust Technology
Intel PTT is a firmware-based Trusted Platform Module (fTPM) device that is
part of Intel chipsets. It provides credential storage and key management that
can replace the equivalent functionality of a discrete TPM chip.
NOTE:
The options that are listed apply to computers with a discrete
Trusted Platform Module (TPM)
.
PTT On
Enables or disables the Intel PTT option.
By default, the
PTT On
option is enabled.
For additional security, Dell Technologies recommends keeping the
PTT On
option enabled.
BIOS Setup
85