Lenovo ThinkVantage (Client Security Solution 8.21) Bedienungsanleitung Seite 25

  • Herunterladen
  • Zu meinen Handbüchern hinzufügen
  • Drucken
  • Seite
    / 86
  • Inhaltsverzeichnis
  • LESEZEICHEN
  • Bewertet. / 5. Basierend auf Kundenbewertungen
Seitenansicht 24
ThefollowingdiagramprovidesthestructurefortheSystemLevelKey:
System Level Key Structure - Take Ownership
Trusted Platform Module
Encrypted via derived AES Key
Storage Root Private Key
Storage Root Public Key
System Leaf Private Key
System Base Private Key
System Leaf Public Key
System Base Public Key
System Base Private Key
System Base Public Key
If Passphrase
loop n times
CSS Admin PW/PP
One-Way Hash
One-Way Hash
System Base AES
Protection Key
(derived via output
of hash algorithm)
Auth
Figure1.SystemLevelKeyStructure-TakeOwnership
EnrollUser
InordertohaveeachusersdataprotectedbythesameTrustedPlatformModule,eachuserwillhavetheir
ownuserbasekeycreated.Thisasymmetricstoragekeycanbemigratedandisalsocreatedtwiceand
protectedbyasymmetricAESKeygeneratedfromeachuser’sWindowspasswordorClientSecurity
passphrase.
ThesecondinstanceoftheUserBaseKeyisthenimportedintotheTrustedPlatformModuleandprotected
bythesystemSRK.WiththeUserBaseKeycreated,asecondaryasymmetrickeycalledtheUserLeafKey
iscreated.TheUserLeafKeyprotectsindividualsecretssuchasthePasswordManagerAESKeyusedto
protectinternetlogoninformation,passwordusedtoprotectdata,andtheWindowspasswordAESKey
usedtoprotecttheaccesstotheoperatingsystem.AccesstotheUserLeafKeyiscontrolledbytheuser’s
WindowspasswordorClientSecuritySolutionpassphraseandisautomaticallyunlockedduringlogon.
Chapter3.WorkingwithClientSecuritySolution19
Seitenansicht 24
1 2 ... 20 21 22 23 24 25 26 27 28 29 30 ... 85 86

Kommentare zu diesen Handbüchern

Keine Kommentare