•ToprovidereliablesecurityforUEFIBIOS,usethesecuritychipandasecurityapplicationwithaTrusted
PlatformModule(TPM)managementfeature.Referto“Settingthesecuritychip”onpage52.
Note:TheMicrosoftWindows8.1operatingsystemsupportstheTPMmanagementfeature.
•IfaDiskEncryptionharddiskdriveandEncryptionsolid-statedriveisinstalledinyourcomputer,besure
toprotectthecontentsofyourcomputermemoryfromunauthorizedaccessbyuseofdriveencryption
software,suchasMicrosoftWindowsBitLocker®DriveEncryption,whichissupportedintheProfessional
andEnterpriseeditionsoftheWindows8.1operatingsystem.Referto“UsingWindowsBitLockerDrive
Encryption”onpage52.
•Beforeyoudisposeof,sell,orhandoveryourcomputer,besuretodeletedatastoredonit.Formore
information,referto“Noticeondeletingdatafromyourharddiskdriveorsolid-statedrive”onpage53.
Note:TheharddiskdrivebuiltintoyourcomputercanbeprotectedbyUEFIBIOS.
UsingWindowsBitLockerDriveEncryption
Tohelpprotectyourcomputeragainstunauthorizedaccess,besuretousedriveencryptionsoftware,such
asWindowsBitLockerDriveEncryption.
WindowsBitLockerDriveEncryptionisanintegralsecurityfeatureoftheWindows8.1operatingsystems.It
issupportedintheProfessionalandEnterpriseeditionsoftheWindows8.1operatingsystem.Itcanhelp
youprotecttheoperatingsystemanddatastoredonyourcomputer,evenifyourcomputerislostorstolen.
BitLockerworksbyencryptingalluserandsystemles,includingtheswapandhibernationles.
BitLockerusesaTrustedPlatformModuletoprovideenhancedprotectionforyourdataandtoensureearly
bootcomponentintegrity.AcompatibleTPMisdenedasaV1.2TPM.
TochecktheBitLockerstatus,gotoControlPanel,andclickSystemandSecurity➙BitLockerDrive
Encryption.
FormoreinformationaboutWindowsBitLockerDriveEncryption,seethehelpinformationsystemofthe
Windowsoperatingsystem,orsearchfor“MicrosoftWindowsBitLockerDriveEncryptionStep-by-Step
Guide”ontheMicr osoftWebsite.
DiskEncryptionharddiskdriveandEncryptionsolid-statedrive
SomemodelscontaintheDiskEncryptionharddiskdriveorEncryptionsolid-statedrive.Thisfeature
helpstoprotectyourcomputeragainstsecurityattacksonmedia,NANDashordevicecontrollersbyuse
ofahardwareencryptionchip.Fortheefcientuseoftheencryptionfeature,besuretosetaharddisk
passwordfortheinternalstoragedevice.
SettingthesecuritychipStrictsecurityrequirementsareimposedonnetworkclientcomputersthattransfercondentialinformation
electronically.Dependingontheoptionsyouordered,yourcomputermighthaveanembeddedsecuritychip,
acryptographicmicroprocessor.WiththesecuritychipandClientSecuritySolution,youcandothefollowing:
•Protectyourdataandsystem
•Strengthenaccesscontrols
•Securecommunications
Settingthesecuritychip
ThechoicesofferedontheSecurityChipsubmenuundertheSecuritymenuofThinkPadSetupareas
follows:
•SecurityChip:Activate,inactivate,ordisablethesecuritychip.
52UserGuide