TPM Trusted Platform Module: what it is and how it improves hardware security

Published : 11/10/2020 10:00:00

The Trusted Platform Module (TPM) technology is designed to offer features related to the safety of the hardware you are using. This technology binds directly to the chip, supporting actions such as generating, storing and limiting the use of encryption keys. The acronym TPM therefore refers both to the chip responsible for computer security and to the specifications for the construction of the microchip itself.



Applicazioni di sicurezza con tecnologia TPM



What is TPM technology and what is it for?



TPM is a chipset that can be installed on many models of Digimax industrial motherboards. This microchip is generally implemented as an add-on module for the motherboard of a computer, but it can also be found in other electronic devices. The TPM chipset is a cryptographic processor that includes some security mechanisms to protect the system from tampering.

Computers that incorporate a TPM can create cryptographic keys and encrypt them so that they can only be decrypted by the TPM. This process, often called key wrapping or binding, can help protect the key from disclosure. Each TPM has a Master wrapping key, called the root key of the storage space, stored in the TPM itself. The private part of an archiving root key or approval key created in a TPM is never exposed to any other component, software, process or user.

The TPM therefore serves to protect your data and your identity; here are some ways in which this can be achieved:

  • Generating and archiving the use of encryption keys
  • Providing two-factor authentication (unique RSA key of the integrated TPM or biometric authentication or PIN)
  • Validating the correct start-up of the operating system



DISCOVER MORE ABOUT INDUSTRIAL APPLICATIONS



How to use the TPM chipset?



The Trusted Platform Module is designed to be available on any operating system or platform. It is therefore possible to implement this technology on a Windows 10 system through tools that Microsoft makes available:

  • Bitlocker: tool for encrypting data on your hard drive
  • Measured Boot: ensures the integrity of the operating system boot, preventing possible malware infection
  • Windows Hello: secure access system through biometric recognition
  • Virtual Smart Card: allows the emulation of a physical smart card using two-factor authentication



Inside the Digimax LAB you can test and customize motherboards and embedded computers in a unique way. Here is a small sample of the consulting service offered by Digimax.



DISCOVER MORE ABOUT DIGIMAX ADVICE





Did you like this article? Share it in your social profiles..