Quick Reference Guide
Trusted Platform Module (TPM) Quick Reference Guide 3
Warning of Potential Data Loss
IMPORTANT USER INFORMATION. READ AND FOLLOW
THESE INSTRUCTIONS PRIOR TO TRUSTED PLATFORM
MODULE INITIALIZATION.
System integrators, owners, and end users must take
precautions to mitigate the chance of data loss. Data
encrypted by any program utilizing the Trusted Platform Module
(TPM) may become inaccessible or unrecoverable if any of the
following occurs:
•
Lost Password: Loss of any of the passwords associated
with the TPM will render encrypted data inaccessible. No
password recovery is available. Read the Security
Precautions for Password Procedures.
•
Hard Drive Failure: In the event of a hard disk (or other
storage media) failure that contains encrypted data, an
image of the hard disk (or other storage media) must be
restored from backup before access to encrypted data may
become available. The owner/user should backup the
system hard disk on a regular basis. Read the Security
Precautions below for Hard Drive Backup Procedures.
•
Platform Failure: In the event of a platform failure and/or
replacement of the desktop board, recovery procedures
may allow migratable keys to be recovered and may restore
access to encrypted data. All non-migratable keys and
their associated data will be lost. The Wave Systems*
EMBASSY* Security Center utilizes migratable keys. Please
check any other software that accesses the TPM for
migratability. Read the Security Precautions for
Emergency Recovery File Backup Procedures.
•
Loss of Trusted Platform Module Ownership: Trusted
Platform Module Ownership/contents may be cleared (via a
BIOS switch) to allow for the transfer of a system to a new
owner. If TPM ownership is cleared, either intentionally or
in error, recovery procedures may allow the migratable
keys to be recovered and may restore access to encrypted
data. Read the Security Precautions for Emergency
Recovery File Backup Procedures.