Manualshelf

Quick Reference Guide

ManualsBrandsIntel ManualsOtherIntel Desktop Board DQ45CB
12345678910
6 Trusted Platform Module (TPM) Quick Reference Guide
Emergency Recovery File Back Up Procedures
Use the EMBASSY Security Center to create the TPM Key
Archive file (keyarchive.xml) onto a removable media (a
floppy, CDR, or flash media). Once this is completed, the
removable media should be stored in a secure location. DO
NOT LEAVE ANY COPIES of the TPM Key Archive on the hard
drive or within any hard drive image backups. If a copy of the
TPM Key Archive remains on the system, it could be used to
compromise the Trusted Platform Module and platform.
This procedure should be repeated after any password changes
or the addition of a new user.
Hard Drive Image Backup Procedures
To allow for emergency recovery from a hard drive failure,
frequent images of the hard drive should be created and stored
in a secure location. In the event of a hard drive failure, the
latest image can be restored to a new hard drive and access to
the encrypted data can be re-established.
NOTE
All encrypted and unencrypted data that was added after the last
image was created will be lost.
Clear Text Backup (Optional)
It is recommended that system owners follow the Hard Drive
Image Backup Procedures.
This option is not recommended because the data is exposed
during backup and restores. To backup select files without
creating a drive image, files can be moved from secured
programs or drive letters to an unencrypted directory. The
unencrypted (clear text) files may then be backed up to
removable media and stored in a secure location. The
advantage of the clear text backup is that no TPM key is
required to restore the data.