HP EliteBook Revolve 810 G2 Tablet Bedienungsanleitung Seite 31
- Seite / 37
- Inhaltsverzeichnis
- LESEZEICHEN
Bewertet. / 5. Basierend auf Kundenbewertungen
HP Client Security Technical Whitepaper
August 2016
747889-002
© Copyright 2016 HP Development Company, L.P.
HP Drive Encryption (HPDE) 31
13.1.4 Pre-boot Authentication
HPDE has it is own pre-boot login environment that requires users to authenticate.
Windows 8/10 Native UEFI: When the drive is encrypted, WinMagic’s Pre-boot UEFI (PBU) performs pre-boot
authentication (PBA) BEFORE the drive can be accessed by the Windows Boot Loader. In order to prevent PBU getting
removed from the BootOrder (for example with Windows 8 “Refresh your PC” and Windows 8 “Reset your PC”) and thus
potentially compromising access to the encrypted disk without authentication, HP and WinMagic implemented the
FilterBootOrder (FBO) variable which is created by HPDE pre-boot to register PBA with HP BIOS. HP BIOS is expected to
function as designed only if FBO exists. FBO gets removed if HPDE is either uninstalled or if a user performs Windows 8
Reset to Plain Text.
Windows 7 Legacy: When the drive is encrypted, WinMagic’s Pre-boot Linux (PBL) performs pre-boot authentication
(PBA) BEFORE the drive can be accessed by the Windows Boot Loader. In order to support F11 Recovery for SEDs, HPDE
requires INT15h implementation in HP BIOS. INT15h-implemented HP BIOS will detect if OPAL mode is enabled and then
will display F11 Recovery prompt. Without INT15h implementation, HP BIOS cannot determine if the recovery partition is
really present or not. When F11 is pressed, HP BIOS stores a value in memory indicating F11 was pressed (to be later
returned by an INT15h call) and will then boot the hard drive. This will launch the PBA code which authenticates the user
and will launch the recovery partition.
Authentication and Recovery Methods
○ Authentication: Password, Fingerprint, Smart Card
○ Recovery: SpareKey and recovery using the backed up encryption key
Drive Encryption pre-boot supports Microsoft SecureBoot if enabled.
One Step Logon, when configured to work between three domains (BIOS, Drive Encryption and Windows), will bypass
Drive Encryption pre-boot after user authenticates at HP BIOS. In the event that Drive Encryption is the first domain to
require authentication, One Step Logon will provide authentication to Windows and directly log the user in to the desktop
without an additional authentication. This feature may be enabled or disabled by an administrator.
13.1.5 Manageability / Upgradeability to Premium Solutions
WinMagic SecureDoc Enterprise (for HP) is a centrally managed version of the encryption engine included in HPDE that
allows HP customers to increase administrative efficiency, improve end user experiences, and reduce the total cost of IT
ownership. All while ensuring maximum security and transparency in regular work flow. Easily integrating with industry-
standard technologies such as OPAL-compliant SEDs, WinMagic SecureDoc Enterprise (for HP) allows businesses to manage
or control the security of their IT environment efficiently.
Should your business require centralized management and control, upgrade seamlessly to WinMagic SecureDoc Enterprise
(for HP), even if the drive was encrypted without having to decrypt it first. Ideal for environments with ten devices or more, it
can also accommodate tens of thousands of users. Licenses can be transitioned to WinMagic SecureDoc Enterprise (for HP)
with minimal impact to end users. Contact your HP Sales representative for additional details. Table 5 provides a
comparison of HPDE (preinstalled) and WinMagic SecureDoc Enterprise (for HP).
Table 5 Feature Comparison
Offering
HPDE (Pre-installed)
WinMagic SecureDoc Enterprise (for HP)
Software Full Disk Encryption (FDE/FVE)
✔ (FVE)
✔
Multi-Drive Encryption (external)
✔
✔
RAID Support
✔
✔
Windows 8 refresh/reset support
✔
✔
Onscreen Keyboard for Win 8 Touch
✔
✔
Pre-boot Authentication
✔
✔
- HP Client Security 1
- Table of contents 2
- Table of contents 3 3
- List of figures 4
- List of tables 5
- 1 Executive summary 6
- 2 System requirements and 7
- 3 Introduction 8
- 4 HP Security Strategy 9
- Options 14
- 7.2 Design and Services 16
- August 2016 18
- 747889-002 18
- 9.1 User Management 19
- 9.2 Policies 20
- 10 Password Manager 21
- Sensor/Driver (VFS495) 22
- 12.1.1 Accessing Devices 24
- 12.1.2 Define a policy 24
- 13.1 Launch via Wizard 27
- 13.1.2 Notifications 29
- 13.1.3 Technical Details 29
- Questions 35
- Standards 37
Verwandte Produkte und Handbücher für Nein HP EliteBook Revolve 810 G2 Tablet
Nein HP Ink Tank Wireless 412 Bedienungsanleitung
(144 Seiten)
(144 Seiten)
(49 Seiten)
(2 Seiten)
(139 Seiten)
Nein HP OMEN Keyboard 1100 Bedienungsanleitung
(11 Seiten)
(11 Seiten)
Nein HP Sprocket 200 Printer Bedienungsanleitung
(10 Seiten)
(10 Seiten)
(38 Seiten)
(114 Seiten)
Nein HP Ink Tank 116 Bedienungsanleitung
(84 Seiten)
(84 Seiten)
Nein HP Ink Tank 116 Bedienungsanleitung
(82 Seiten)
(82 Seiten)
© 2020, manymanuals.de. Alle Rechte vorbehalten. | 0.067 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Kommentare zu diesen Handbüchern