The security of "TPM only" lies in the fact that even though you can boot up the machine, there's really not a lot you can do when the machine is on the lock screen. In this scenario, half of the unlock key is unlocked by the secret stored in the TPM, and the other half is unlocked by entering the correct PIN (or password, if you configure it that way).īitlocker's default is indeed "TPM only". So there is a TPM+PIN option, if you so configure it via Group Policy.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |