Trusted Platform Module ordered I have questions.

Message Topic Search Topic Options Post Reply Create New Topic Printable Version Translate Topic

   I ordered a 1.2 and not a 2.0
I thought better of a hardware digital rights thingie. I mean I just don't like the idea that it is possible for someone external to decide what I can run on my computer and the TPM 2.0 seems to provide that sort of control.

 Now it should be obvious that I know just the basics so far. So I have watched videos and read what I can but the information in my ASRock 970 Performance PDF reference guide offers just a simple one liner about my hard drives and nothing more.

"Fatal1ty 970 Performance Series Trusted Computing Security Device Support Enable to activate Trusted Platform Module (TPM) security for your hard disk drives"

 I would like to understand more. I am setting up a linux system and will be turning on the TPM.

 So what does it do for the hard drives? This is a fresh build so I will start with blank drives and build up.

 What else should I do?  

Author	Message Topic Search Topic Options Post Reply Create New Topic Printable Version Translate Topic
Ernst0 Members Profile Send Private Message Find Members Posts Add to Buddy List Newbie Joined: 29 Dec 2018 Location: California Status: Offline Points: 21	Post Options Post Reply Quote Ernst0 Report Post Thanks(0) Quote Reply Topic: Trusted Platform Module ordered I have questions. Posted: 29 Dec 2018 at 9:49am
	I ordered a 1.2 and not a 2.0 I thought better of a hardware digital rights thingie. I mean I just don't like the idea that it is possible for someone external to decide what I can run on my computer and the TPM 2.0 seems to provide that sort of control. Now it should be obvious that I know just the basics so far. So I have watched videos and read what I can but the information in my ASRock 970 Performance PDF reference guide offers just a simple one liner about my hard drives and nothing more. "Fatal1ty 970 Performance Series Trusted Computing Security Device Support Enable to activate Trusted Platform Module (TPM) security for your hard disk drives" I would like to understand more. I am setting up a linux system and will be turning on the TPM. So what does it do for the hard drives? This is a fresh build so I will start with blank drives and build up. What else should I do?

Ernst0 Members Profile Send Private Message Find Members Posts Add to Buddy List Newbie Joined: 29 Dec 2018 Location: California Status: Offline Points: 21	Post Options Post Reply Quote Ernst0 Report Post Thanks(0) Quote Reply Posted: 10 Jan 2019 at 9:59am
	Okay I am rebuilding my Workstation, after a shakedown, and am slowly working through all the issues. I asked what about the TPM her and it looks like those who might know are busy :) I just don't know yet. I am about to reinstall Fedora and I will simply switch on the TPM option then select encryption. I like the trusted boot idea, and that is a huge security issue but, I would like the whole system encryption too. I'll go with that. Not just encrypted but with a key not even I don't know. There is so much to understand that I wish I could go to College to take the class! LOL I welcome any input. I will simply expect the magic to happen. I shall see. There is nothing so valuable to anyone else that I worry but to me it is valuable.

xhue Members Profile Send Private Message Find Members Posts Add to Buddy List Groupie Joined: 17 Aug 2018 Status: Offline Points: 634	Post Options Post Reply Quote xhue Report Post Thanks(0) Quote Reply Posted: 10 Jan 2019 at 6:31pm
	Without getting into the nitty-gritty details of the TPM, let's just say it's a hardware 'vault' for various keys and 'fingerprints'. It's basically a HW wallet where your system can store the keys and stuff for HDD encryption. Please note that TPM 1.2 differs vastly in implementation than TPM2, as TPM is considered much more secure. TPM & SecureBoot are interesting topics when it comes down to Linux. Often therr is a lot of manual tweaking involved to get is all working as it should.

Ernst0 Members Profile Send Private Message Find Members Posts Add to Buddy List Newbie Joined: 29 Dec 2018 Location: California Status: Offline Points: 21	Post Options Post Reply Quote Ernst0 Report Post Thanks(0) Quote Reply Posted: 13 Jan 2019 at 11:45am
	Thanks for the info! I am seeing about this. It's much more work to secure boot I read. I mean I understand how this is a worthy bit of security especially if the computer is at risk of someone getting access to the hardware.