HP dc73 Blade Client manual Achieving key security objectives, Protecting against targeted theft

Page 10

Achieving key security objectives

The HP ProtectTools modules can work together to provide solutions for a variety of security issues, including the following key security objectives:

Protecting against targeted theft

Restricting access to sensitive data

Preventing unauthorized access from internal or external locations

Creating strong password policies

Protecting against targeted theft

An example of this type of incident would be the targeted theft of a computer containing confidential data and customer information in a cubicle or open environment. The following features help protect against targeted theft:

The pre-boot authentication feature, if enabled, helps prevent access to the operating system. See the following procedures:

Enabling and disabling smart card power-on authentication support on page 46

Enabling and disabling power-on authentication support for Embedded Security on page 47

Assigning a name to a Java Card on page 39

Drive Encryption for HP ProtectTools on page 52

DriveLock helps ensure that data cannot be accessed even if the hard drive is removed and installed into an unsecured system. See “Enabling and disabling DriveLock hard drive protection on page 48.”

The Personal Secure Drive feature, provided by the Embedded Security for HP ProtectTools module, encrypts sensitive data to help ensure it cannot be accessed without authentication. See the following procedures:

Embedded Security “Setup procedures on page 28

Using the Personal Secure Drive on page 31

Restricting access to sensitive data

Suppose a contract auditor is working onsite and has been given computer access to review sensitive financial data; you do not want the auditor to be able to print the files or save them to a writeable device such as a CD. The following feature helps restrict access to data:

The DriveLock helps ensure that data cannot be accessed even if the hard drive is removed and installed into an unsecured system. See “Enabling and disabling DriveLock hard drive protection on page 48.”

Preventing unauthorized access from internal or external locations

If a PC containing confidential data and customer information is accessed from an internal or external location, unauthorized users may be able to gain entry to corporate network resources or data from

4 Chapter 1 Introduction to security

ENWW

Page 9 Page 11
Image 10
Page 9 Page 11
Contents ProtectTools First Edition July Document Part Number Table of contents Embedded Security for HP ProtectTools Java Card Security for HP ProtectToolsTroubleshooting Bios Configuration for HP ProtectToolsDrive Encryption for HP ProtectTools Enww Introduction to security HP ProtectTools features Module Key featuresAccessing HP ProtectTools Security Achieving key security objectives Restricting access to sensitive dataProtecting against targeted theft Creating strong password policies Additional security elements Managing HP ProtectTools passwordsAssigning security roles Java Card PIN also protects access to Creating a secure password HP ProtectTools Backup and RestoreBacking up credentials and settings Restoring credentials Configuring settings Credential Manager for HP ProtectTools Using the Credential Manager Logon Wizard Setup proceduresLogging on to Credential Manger Logging on for the first time Registering credentialsRegistering fingerprints Registering a Java Card, USB eToken, or virtual token Setting up the fingerprint readerUsing your registered fingerprint to log on to Windows Registering a USB eTokenCreating a virtual token Changing the Windows logon passwordGeneral tasks Changing a token PINManaging identity Clearing an identity from the systemLogging on to Windows with Credential Manager Using Windows LogonLocking the computer Adding an accountRemoving an account Using Single Sign OnUsing automatic registration Registering a new applicationModifying application properties Using manual drag and drop registrationManaging applications and credentials Removing an application from Single Sign OnImporting an application Using Application ProtectionModifying credentials Changing restriction settings for a protected application Restricting access to an applicationRemoving protection from an application Enww Advanced tasks administrator only Specifying how users and administrators log onConfiguring custom authentication requirements Configuring credential propertiesConfiguring Credential Manager settings Select Start All Programs HP ProtectTools Security Manager Embedded Security for HP ProtectTools Select Embedded security device state and change to Enable Enabling the embedded security chipInitializing the embedded security chip Setting up the basic user account Encrypting files and folders Using the Personal Secure DriveSending and receiving encrypted e-mail Changing the Basic User Key password Advanced tasks Creating a backup fileRestoring certification data from the backup file Backing up and restoringEnabling Embedded Security after permanent disable Changing the owner passwordResetting a user password Enabling and disabling Embedded SecurityMigrating keys with the Migration Wizard Java Card Security for HP ProtectTools Changing a Java Card PIN Selecting the card readerAdvanced tasks administrators only Assigning a Java Card PINSetting power-on authentication Assigning a name to a Java CardTo enable Java Card power-on authentication Disabling Java Card power-on authentication Creating a user Java CardBios Configuration for HP ProtectTools Managing boot options Enabling and disabling system configuration options Enww Managing HP ProtectTools add-on module settings Under Smart Card Security, click EnableClick Apply, and then click OK in the HP ProtectTools window Enabling and disabling DriveLock hard drive protection Using DriveLockDriveLock Applications Changing the power-on password Managing Computer Setup passwordsSetting the power-on password Setting the setup passwordSetting password options Changing the setup passwordEnabling and disabling stringent security Enww Drive Encryption for HP ProtectTools Encryption management User management Recovery Right pane, click Click here to backup your keysCredential Manager for ProtectTools TroubleshootingSecurity Change password option, but, since Virtual Token duringConnect Click Advanced SettingsClick Service & Applications Click Java Cards and TokensReader to log on to Credential ManagerSelect Enable Save changes and exit F10 = ROM Based Setup message is displayedIt to Embedded Security Device-Enable Security Restore IdentityEmbedded Security for ProtectTools Select File Save Changes and Exit Being used by another Process cannot accessFile because it is ProcessOut with access denied Selects SPSystemBackup .xml Clicks Restore under BackupError has been detected Selected Backup Archive doesEnww Miscellaneous Click All Programs Click HP ProtectTools Security ManagerPower-on Computer Setup, the Power-on Authentication support Glossary Enww Access IndexEnww Enww
Related manuals
Manual 65 pages 2.14 Kb
Top Page Image Contents