Table 31. System setup options—Security menu (continued)
Security
Key Storage Enable
SHA-256
Clear
TPM State
Intel® Platform Trust Technology
PTT On
Physical Presence Interface (PPI) Bypass for
Clear Commands
Clear
Chassis intrusion
86
BIOS-instellingen
The Key Storage Enable option controls the storage hierarchy of TPM, which is
used to store digital keys. Disabling the Key Storage Enable option restricts the
ability of TPM to store owner's data.
By default, the Key Storage Enable option is enabled.
For additional security, Dell Technologies recommends keeping the Key Storage
Enable option enabled.
NOTE:
When disabled, this feature may cause compatibility issues or loss of
functionality in some operating systems.
Allows you to control the hashing algorithm that is used by the TPM. When enabled,
the TPM uses the SHA-256 hashing algorithm. When disabled, the TPM uses the
SHA-1 hash algorithm.
By default, the SHA-256 option is enabled.
For additional security, Dell Technologies recommends keeping the SHA-256 option
enabled.
When enabled, the Clear option clears information that is stored in the TPM after
exiting the computer's BIOS. This option returns to the disabled state when the
computer restarts.
By default, the Clear option is disabled.
Dell Technologies recommends enabling the Clear option only when TPM data is
required to be cleared.
Enables or disables the Trusted Platform Module (TPM). This is the normal operating
state for the Trusted Platform Module (TPM) when you want to use its complete
array of capabilities.
By default, the TPM State option is enabled.
Intel PTT is a firmware-based Trusted Platform Module (fTPM) device that is part
of Intel chipsets. It provides credential storage and key management that can replace
the equivalent functionality of a discrete TPM chip.
NOTE:
The options that are listed apply to computers with a discrete Trusted
Platform Module (TPM).
Enables or disables the Intel PTT option.
By default, the PTT On option is enabled.
For additional security, Dell Technologies recommends keeping the PTT On option
enabled.
The PPI Bypass for Clear Commands option allows the operating system to manage
certain aspects of PTT. When enabled, you are not prompted to confirm changes to
the PTT configuration.
By default, the PPI Bypass for Clear Commands option is disabled.
For additional security, Dell Technologies recommends keeping the PPI Bypass for
Clear Commands option disabled.
When enabled, the Clear option clears the information that is stored in the PTT
fTPM after exiting the computer's BIOS. This option returns to the disabled state
when the computer restarts.
By default, the Clear option is disabled.
Dell Technologies recommends enabling the Clear option only when PTT fTPM data
needs to be cleared.