HP ProtectTools security software 2011 - Technical white paper
Privacy Manager is an HP ProtectTools plug-in, and can be accessed directly from within Microsoft
Office 2010. On first use, a wizard will guide you through the process of obtaining a digital
certificate. HP has partnered with Comodo, a leading issuer of digital certificates, to provide HP
Privacy Manager users with a certificate, valid for six months, at no cost. The certificate identifies the
originator of the communication to the recipient. Non-Comodo certificates are also supported. You
can also invite your contacts to acquire their own Privacy Manager certificates to become Trusted
Contacts. Trusted Contacts are listed in Privacy Manager.
Privacy Manager is designed to integrate seamlessly into Microsoft Office applications. Content
created in Microsoft Office can be digitally signed and encrypted to ensure that only Trusted Contacts
can view the content. It also ensures that the document was not modified after being signed.
Privacy Manager has clear benefits for businesses of all sizes. In addition to basic certificates which
certify just an email address, Comodo can issue certificates which certify the real name and identity of
the user. When businesses purchase this service, Comodo will formally validate that the administrator
making the request has the authority to issue user certificates on behalf of the domain. This
administrator will be given access to a management console used to request certificates for any
employees. These certificates will now certify the user’s actual identity, such as their name, title and
email, so that their use can serve as a strong part of audit and compliance requirements.
Enterprises may also consider the deployment of a server to centrally manage policies and enable
users to easily use their certificates from any computer on the network. DigitalPersona, an HP
ProtectTools partner, offers a client/server solution, DigitalPersona Pro, to better manage
authentication credentials and Privacy Manager on Active Directory-based networks.
HP DigitalPass One Time Password
HP DigitalPass One Time Password (OTP) technology helps prevent access to a user’s computer by
providing a second level of authentication that helps validate online transactions. This elevated level
of security and protection for online transactions is accomplished by validating the user’s online
identity with participating websites.
HP DigitalPass OTP is an HP ProtectTools plug-in that works with VeriSign Identity Protection (VIP)
service to create secure connection to VIP-enabled websites. DigitalPass OTP allows you to enable
VeriSign VIP and create VIP access tokens for supported sites. Once you have registered and created
the access token, HP DigitalPass will log you into the site automatically.
HP DigitalPass requires the following hardware/firmware components:
Intel Core i3, i5, or i7 processor and chipset
Intel Management Engine Interface (MEI) driver version 7.x.x.x.x
Host Embedded Controller Interface (HECI)
BIOS containing management engine firmware ME FW 7.1.x.x
Or
HP fingerprint sensor
Fingerprint sensor driver version 4.3.117.0
HP DigitalPass uses a fingerprint or a hardware generated passcode that is used only once for a
short period of time and is supplied invisibly to participating websites. This passcode provides a
second factor of authentication to the traditional user name and password. It provides something
the user knows (user ID and password) plus something the user has (HP DigitalPass). The passcode
is protected in the PC hardware and cannot be accessed from the hard drive or the BIOS.
Platform Support
HP ProtectTools Security Manager is supported across a range of HP business notebooks,
desktops, and workstations. Table 5 provides details of support for HP business notebooks.