Linked by Thom Holwerda on Mon 29th Aug 2005 12:42 UTC
Windows Secure Startup is primarily designed to prevent laptop thieves and other unauthorized users with physical access to a computer from getting access to the data on the system. Secure Startup uses a chip called the Trusted Platform Module, or TPM, which offers protected storage of encryption keys, passwords and digital certificates. Vista uses this capability to verify that a PC has not been tampered with when it starts up and to protect data through encryption.
Thread beginning with comment 24638
To read all comments associated with this story, please click here.
You have got to be kidding.
by Earl Colby pottinger on Mon 29th Aug 2005 13:41 UTC
Earl Colby pottinger
Member since:

To service the computer the Secure Startup can be disabled. That means anyone with the right tools can bypass the protection.

To move the data there is a master key that is generated at the first setup. Now how many customers will store that on one of thier PC's harddrive? Read prior statement again.

Also this chip contain the keys to encode/decode the data, that means at some point the keys come out of the chip. Why can't I tap into that information transfer and get the keys for myself?

Reply Score: 1

RE: You have got to be kidding.
by raboof on Mon 29th Aug 2005 13:48 in reply to "You have got to be kidding."
raboof Member since:

Well i don't know any of the details, but I'd expect the keys would *not* come out of the chip. Rather, you put plaintext in, the chip does the processing, and returns only the result. Of course you can probably eavesdrop on that, but i can imagine there are applications where that isn't much of a problem.

Reply Parent Score: 1