HP Elite 8300 Using HP DigitalPass One Time Password protection - Technical Wh - Page 3

How DigitalPass works HP DigitalPass uses a hardware-generated passcode that is used only once for a short period of time and supplied invisibly to participating websites. This passcode provides a second factor of authentication to the traditional user name and password-providing something you know (user ID and password) plus something you have (HP DigitalPass). The passcode generator is protected in the PC hardware and cannot be accessed from the hard drive or the BIOS. To begin using HP DigitalPass, Credential Manager for HP ProtectTools should be utilized to activate the VIP Access Credential. Beyond Credential Manager, participating websites that utilize this advanced security protection will, during initial engagement, invite users to "bind" their passwords and the OTP. Required components and architecture HP DigitalPass requires the following components for HP DigitalPass functionality. • Intel 2nd generation Core i3, i5, or i7 vPro-capable processor and chipset • HP ProtectTools Security Manager • Intel Management Engine Interface (MEI) driver version 8.x.x.x.x • Host Embedded Controller Interface (HECI) • BIOS containing management engine firmware ME FW8.x.x.x • HP DigitalPass / One Time Password component NOTE: PC models introduced in 2011 use ME FW ver. 7 and MEI driver ver 7. HP DigitalPass architecture is shown in Figure 1. Figure 1: HP DigitalPass architecture 3