Jump to content

What do trusted platform modules do exactly?

TheMidnightNarwhal
 Share
Posted

If I recall correctly its supposed to set off an alarm or something when its triggered. Dunno much about them.

 

G3258 V 860k (Spoiler: G3258 wins)

 

 

Spoiler

i7-4790K | MSI R9 390x | Cryorig H5 | MSI Z97 Gaming 7 Motherboard | G.Skill Sniper 8gbx2 1600mhz DDR3 | Corsair 300R | WD Green 2TB 2.5" 5400RPM drive | <p>Corsair RM750 | Logitech G602 | Corsair K95 RGB | Logitech Z313

Link to post
Share on other sites
Posted

It blows up the PC xD

Lol, that'd be epic, but I wouldn't plug that in in my PC. Lawl

 

G3258 V 860k (Spoiler: G3258 wins)

 

 

Spoiler

i7-4790K | MSI R9 390x | Cryorig H5 | MSI Z97 Gaming 7 Motherboard | G.Skill Sniper 8gbx2 1600mhz DDR3 | Corsair 300R | WD Green 2TB 2.5" 5400RPM drive | <p>Corsair RM750 | Logitech G602 | Corsair K95 RGB | Logitech Z313

Link to post
Share on other sites
Posted

Is it that if it's not plugged in a PC you won't be able to use it. Is that it?

 

 

If I recall correctly its supposed to set off an alarm or something when its triggered. Dunno much about them.

 

 

Not true unfortunately.

 

---

 

A TPM in simple terms is an add-on microprocessor that creates secure keys for use with either BIOS security or OS security protocols (Bit locker drive encryption requires a TPM for example). The reason its considered required is down to the fact its not held in a place where it can be edited by malicious programs. It creates whats known as a 'root of trust' in the BIOS level so that the computer can 'trust' the codes it generates are secure and not tampered with.

 

So think of it as a trustworthy platform that the computer can use to generate cryptographic keys for its own uses.

Quack 🦆

Link to post
Share on other sites
Posted
  • Author

Not true unfortunately.

 

---

 

A TPM in simple terms is an add-on microprocessor that creates secure keys for use with either BIOS security or OS security protocols (Bit locker drive encryption requires a TPM for example). The reason its considered required is down to the fact its not held in a place where it can be edited by malicious programs. It creates whats known as a 'root of trust' in the BIOS level so that the computer can 'trust' the codes it generates are secure and not tampered with.

 

So think of it as a trustworthy platform that the computer can use to generate cryptographic keys for its own uses.

 

So basically it's kind of it I had a house that has hidden mics in it but I have a room in there that is mic proof so I know it's safe and nothing can like steal or hear what's in there. Kinda that?

Link to post
Share on other sites
Posted

So basically it's kind of it I had a house that has hidden mics in it but I have a room in there that is mic proof so I know it's safe and nothing can like steal or hear what's in there. Kinda that?

 

Yeah sort of, Its just a trustworthy code generator.

Quack 🦆

Link to post
Share on other sites
Posted
  • Author

Yeah sort of, Its just a trustworthy code generator.

 

Ok.

 

But how extremely safe is it? I mean, simply using bitlocker itself with a code or even a flash drive key is secure right? Comparing Bitlocker PW to USB Key to TPM which one would be better? Because you can still use Bitlocker without a TPM module.

Link to post
Share on other sites
Posted

Ok.

 

But how extremely safe is it? I mean, simply using bitlocker itself with a code or even a flash drive key is secure right? Comparing Bitlocker PW to USB Key to TPM which one would be better? Because you can still use Bitlocker without a TPM module.

 

Using Bitlocker with a TPM is the most secure system. You could loose a USB key or its contents could be copied onto an attackers USB, same with a password it can be found out or forgotten. But using a TPM ensures that the code used to unlock the encryption can only come from one source (the TPM) and is very hard to fake. You cant just copy its contents onto another TPM and try to spoof you way into the data.

 

You can use a TPM in other ways, for example you can require that a TPM be setup in a computer so that it wont boot without the correct TPM with the correctly generated password present. 

Quack 🦆

Link to post
Share on other sites
Posted
  • Author

Using Bitlocker with a TPM is the most secure system. You could loose a USB key or its contents could be copied onto an attackers USB, same with a password it can be found out or forgotten. But using a TPM ensures that the code used to unlock the encryption can only come from one source (the TPM) and is very hard to fake. You cant just copy its contents onto another TPM and try to spoof you way into the data.

 

You can use a TPM in other ways, for example you can require that a TPM be setup in a computer so that it wont boot without the correct TPM with the correctly generated password present. 

 

Ah, cool.

 

So, I could use a TPM as a key really. When I leave it take off the TPM.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing CPUs, Motherboards, and Memory

×