Presentation is loading. Please wait.

Presentation is loading. Please wait.

Initial Tiger Team Briefing New Dells with TPM Peter Leight Richard Hammer May 2006.

Published byCorey Henderson Modified over 8 years ago

Similar presentations

Presentation on theme: "Initial Tiger Team Briefing New Dells with TPM Peter Leight Richard Hammer May 2006."— Presentation transcript:

1 Initial Tiger Team Briefing New Dells with TPM Peter Leight Richard Hammer May 2006

2 Overview of Trusted Platform Module (TPM) Hardware Chipset or Microcontroller Stores keys, passwords, or certificates Information stored on chip not hard drive Improves data security Secure Applications Utilize TPM hardware Authentication Encryption

3 New Dell Laptops shipping TPM Capable Latitude D820 Hardware Disabled Software Enabled, Possible Vulnerabilities Latitude D610 Hardware Disabled Software Not installed

4 Current Security Posture Only Latitude D820s Deployed Clean Laptop Installs Defense-in-Depth Network Firewall Egress/Ingress Rules Checkpoint Integrity Personal Firewalls VPN Configuration / Firewalls IDS

5 Recommendations Tactical: New IDS Rules Destination TCP/UDP port 10001 TCP/UDP DNS Queries for wave.com Strategic: Evaluation of New Technologies Hard Drive Encryption E-mail Encryption Authentication

6 TPM: Future Possibilities Hard drive Encryption RSA Acceleration Boot Process Integrity Any Application can Access TPM Hardware E-mail Encryption Secure Deletion Document Management Authentication Multifactor Biometrics

7 Conclusion Our current network posture mitigates risks from the new Dell D820 TPM implementation Addition of new IDS rule will monitor to ensure our policies are effective Disk and e-mail encryption technologies must be evaluated TMP technology offers possible future security enhancements Continued Vigilance Required when dealing with new technologies!

Download ppt "Initial Tiger Team Briefing New Dells with TPM Peter Leight Richard Hammer May 2006."

Similar presentations

Mobile Devices: Know the RISKS. Take the STEPS. PROTECT AND SECURE Health Information.

Mobile Devices: Know the RISKS. Take the STEPS. PROTECT AND SECURE Health Information.
Microsoft ® Official Course First Look Clinic Overview of Windows 8 By Ragowo Riantory, S.Kom, MCP.

Microsoft ® Official Course First Look Clinic Overview of Windows 8 By Ragowo Riantory, S.Kom, MCP.
Rambling on the Private Data Security

Rambling on the Private Data Security
1 Minimal TCB Code Execution Jonathan McCune, Bryan Parno, Adrian Perrig, Michael Reiter, and Arvind Seshadri Carnegie Mellon University May 22, 2007.

1 Minimal TCB Code Execution Jonathan McCune, Bryan Parno, Adrian Perrig, Michael Reiter, and Arvind Seshadri Carnegie Mellon University May 22, 2007.
Module 3 Windows Server 2008 Branch Office Scenario.

Module 3 Windows Server 2008 Branch Office Scenario.
Defense-in-Depth Against Malicious Software Jeff Alexander IT Pro Evangelist Microsoft Australia

Defense-in-Depth Against Malicious Software Jeff Alexander IT Pro Evangelist Microsoft Australia
Jonas Lippuner. Overview IPCop  Introduction  Network Structure  Services  Addons Installing IPCop on a SD card  Hardware  Installation.

Jonas Lippuner. Overview IPCop  Introduction  Network Structure  Services  Addons Installing IPCop on a SD card  Hardware  Installation.
Trusted Platform Modules: Building a Trusted Software Stack and Remote Attestation Dane Brandon, Hardeep Uppal CSE551 University of Washington.

Trusted Platform Modules: Building a Trusted Software Stack and Remote Attestation Dane Brandon, Hardeep Uppal CSE551 University of Washington.
Trusted Computing Initiative Beyond trustworthy. Trusted Computing  Five Key Concepts >Endorsement Key >Secure Input and Output >Memory Curtain / Protected.

Trusted Computing Initiative Beyond trustworthy. Trusted Computing  Five Key Concepts >Endorsement Key >Secure Input and Output >Memory Curtain / Protected.
Group Presentation Design and Implementation of a company- wide networking & communication technologies strategy 9 th December 2003 Prepared By: …………

Group Presentation Design and Implementation of a company- wide networking & communication technologies strategy 9 th December 2003 Prepared By: …………
SEC316: BitLocker™ Drive Encryption

SEC316: BitLocker™ Drive Encryption
Lesson 11-Virtual Private Networks. Overview Define Virtual Private Networks (VPNs). Deploy User VPNs. Deploy Site VPNs. Understand standard VPN techniques.

Lesson 11-Virtual Private Networks. Overview Define Virtual Private Networks (VPNs). Deploy User VPNs. Deploy Site VPNs. Understand standard VPN techniques.
Copyright © 1995-2006 Clifford Neuman - UNIVERSITY OF SOUTHERN CALIFORNIA - INFORMATION SCIENCES INSTITUTE USC CSci599 Trusted Computing Lecture Three.

Copyright © Clifford Neuman - UNIVERSITY OF SOUTHERN CALIFORNIA - INFORMATION SCIENCES INSTITUTE USC CSci599 Trusted Computing Lecture Three.
outline Purpose Design Implementation Market Conclusion presentation Outline.

outline Purpose Design Implementation Market Conclusion presentation Outline.
Controls for Information Security

Controls for Information Security
Firewall 2 * Essential Network Security Book Slides. IT352 | Network Security |Najwa AlGhamdi 1.

Firewall 2 * Essential Network Security Book Slides. IT352 | Network Security |Najwa AlGhamdi 1.
Mobility for the Enterprise

Mobility for the Enterprise
Payment Card Industry (PCI) Data Security Standard

Payment Card Industry (PCI) Data Security Standard
File System and Full Volume Encryption Sachin Patel CSE 590TU 3/9/2006.

File System and Full Volume Encryption Sachin Patel CSE 590TU 3/9/2006.
Internet/Intranet firewall security – policy, architecture and transaction services Written by Ray Hunt This presentation will Examines Policies that influence.

Internet/Intranet firewall security – policy, architecture and transaction services Written by Ray Hunt This presentation will Examines Policies that influence.

Similar presentations

Ads by Google