Dell XPS 13 9315 XPS 13 9315 / XPS 9315 Service Manual - Page 47

Table 10. System setup options-Security menu continued, Intel Platform Trust Technology PTT

Get Dell XPS 13 9315 PDF manuals and user guides View all Dell XPS 13 9315 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 47 highlights

Table 10. System setup options-Security menu (continued) Security By default, the Key Storage Enable option is enabled. For additional security, Dell Technologies recommends keeping the Key Storage Enable option enabled. NOTE: When disabled, this feature may cause compatibility issues or loss of functionality in some operating systems. SHA-256 Allows you control the usage of SHA-256 by TPM. When enabled, the BIOS and TPM use the SHA-256 hash algorithm to extend measurements into the TPM PCRs during BIOS boot. When disabled, the BIOS and TPM use the SHA-1 hash algorithm to extend measurements into the TPM PCRs during BIOS boot. By default, the SHA-256 option is enabled. For additional security, Dell Technologies recommends keeping the SHA-256 option enabled. Clear When enabled, the Clear option clears information stored in the TPM after exiting the system's BIOS. This option returns to disabled state when the system restarts. By default, the Clear option is disabled. Dell Technologies recommends enabling the Clear option only when TPM data is required to be cleared. TPM State Enables or disables the Trusted Platform Module (TPM). This is the normal operating state for the Trusted Platform Module (TPM) when you want to use its complete array of capabilities. By default, the TPM State option is enabled. Intel Platform Trust Technology (PTT) Intel PTT is a firmware-based Trusted Platform Module (fTPM) device that is part of Intel chipsets. It provides credential storage and key management that can replace the equivalent functionality of a discrete TPM chip. PTT On Enables or disables the Intel PTT option. By default, the PTT On option is enabled. For additional security, Dell Technologies recommends keeping the PTT On option enabled. Physical Presence Interface (PPI) Bypass for Clear Commands The PPI Bypass for Clear Commands option allows the operating system to manage certain aspects of PTT. When enabled, you are not prompted to confirm changes to the PTT configuration. By default, the PPI Bypass for Clear Commands option is disabled. For additional security, Dell Technologies recommends keeping the PPI Bypass for Clear Commands option disabled. Clear When enabled, the Clear option clears the information stored in the PTT fTPM after exiting the system's BIOS. This option returns to disabled state when the system restarts. By default, the Clear option is disabled. Dell Technologies recommends enabling the Clear option only when PTT fTPM data needs to be cleared. Chassis intrusion Chassis Intrusion Detection Allows you to control the chassis intrusion feature. This feature notifies the user when the base cover has been removed from the computer. When set to Enabled, a notification is displayed on the next boot and the event is logged in the BIOS Events log. System setup 47

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
Table 10. System setup options—Security menu (continued)
Security
By default, the
Key Storage Enable
option is enabled.
For additional security, Dell Technologies recommends keeping the
Key Storage
Enable
option enabled.
NOTE:
When disabled, this feature may cause compatibility issues or loss of
functionality in some operating systems.
SHA-256
Allows you control the usage of SHA-256 by TPM. When enabled, the BIOS and
TPM use the SHA-256 hash algorithm to extend measurements into the TPM
PCRs during BIOS boot. When disabled, the BIOS and TPM use the SHA-1 hash
algorithm to extend measurements into the TPM PCRs during BIOS boot.
By default, the
SHA-256
option is enabled.
For additional security, Dell Technologies recommends keeping the
SHA-256
option enabled.
Clear
When enabled, the
Clear
option clears information stored in the TPM after
exiting the system's BIOS. This option returns to disabled state when the system
restarts.
By default, the
Clear
option is disabled.
Dell Technologies recommends enabling the
Clear
option only when TPM data is
required to be cleared.
TPM State
Enables or disables the Trusted Platform Module (TPM). This is the normal
operating state for the Trusted Platform Module (TPM) when you want to use its
complete array of capabilities.
By default, the
TPM State
option is enabled.
Intel Platform Trust Technology (PTT)
Intel PTT is a firmware-based Trusted Platform Module (fTPM) device that is
part of Intel chipsets. It provides credential storage and key management that
can replace the equivalent functionality of a discrete TPM chip.
PTT On
Enables or disables the Intel PTT option.
By default, the
PTT On
option is enabled.
For additional security, Dell Technologies recommends keeping the
PTT On
option enabled.
Physical Presence Interface (PPI) Bypass
for Clear Commands
The PPI Bypass for Clear Commands option allows the operating system to
manage certain aspects of PTT. When enabled, you are not prompted to confirm
changes to the PTT configuration.
By default, the
PPI Bypass for Clear Commands
option is disabled.
For additional security, Dell Technologies recommends keeping the
PPI Bypass
for Clear Commands
option disabled.
Clear
When enabled, the
Clear
option clears the information stored in the PTT fTPM
after exiting the system's BIOS. This option returns to disabled state when the
system restarts.
By default, the
Clear
option is disabled.
Dell Technologies recommends enabling the
Clear
option only when PTT fTPM
data needs to be cleared.
Chassis intrusion
Chassis Intrusion Detection
Allows you to control the chassis intrusion feature. This feature notifies the user
when the base cover has been removed from the computer.
When set to
Enabled
, a notification is displayed on the next boot and the event
is logged in the BIOS Events log.
System setup
47