Lenovo ThinkPad T430s (English) User Guide - Page 141
Technology for Directed I/O. When enabled, a, BIOS ROM String Reporting
View all Lenovo ThinkPad T430s manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 141 highlights
Table 6. Security menu items (continued) Menu item Submenu item Security Chip Security Chip Security Reporting Options Value • Active • Inactive • Disabled Clear Security Chip • Enter UEFI BIOS Update Option Intel TXT Feature Physical Presence for Provisioning Physical Presence for Clear Flash BIOS Updating by End-Users • Disabled • Enabled • Disabled • Enabled • Disabled • Enabled • Disabled • Enabled Memory Protection Secure RollBack Prevention Execution Prevention • Disabled • Enabled • Disabled • Enabled Virtualization Intel Virtualization Technology Intel VT-d Feature • Disabled • Enabled • Disabled • Enabled Comments If you select Active, the security chip is functional. If you select Inactive, the security chip option is visible, but is not functional. If you select Disabled, the security chip is hidden and the option is not functional. Enable or disable the following Security Reporting Options: • BIOS ROM String Reporting: BIOS text string • CMOS Reporting: CMOS data • NVRAM Reporting: Security data stored in the Asset ID • SMBIOS Reporting: SMBIOS data Clear the encryption key. Note: This item is displayed only if you have selected Active for the security chip option. Enable or disable Intel Trusted Execution Technology. This option enables or disables the confirmation message when you change the settings of the security chip. This option enables or disables the confirmation message when you clear the security chip. If you select Enabled, all users can update the UEFI BIOS. If you select Disabled, only the person who knows the supervisor password can update the UEFI BIOS. If you select Enabled, you can choose to flash to the previous version of the UEFI BIOS. Some computer viruses and worms cause memory buffers to overflow by running code where only data is allowed. If the Data Execution Prevention feature can be used with your operating system, then by selecting Enabled you can protect your computer against attacks by such viruses and worms. If after choosing Enabled you find that an application program does not run correctly, select Disabled and reset the setting. If you select Enabled, a VMM (Virtual Machine Monitor) can utilize the additional hardware capabilities provided by Intel Virtualization Technology. Intel VT-d stands for Intel Virtualization Technology for Directed I/O. When enabled, a VMM can utilize the platform infrastructure for I/O virtualization. Chapter 8. Advanced configuration 123