[ltp] X60s/200s with SSD, encrypted disk

Yves-Alexis Perez linux-thinkpad@linux-thinkpad.org
Mon, 29 Jun 2015 22:15:38 +0200


--=-8v15IsaWWMwOQvrw560R
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

On lun., 2015-06-22 at 23:47 +0200, Christoph Schmees wrote:
> that's a different story. I mean the BIOS/TPM supported HD
> encryption. This is completely transparent to any OS. I am not
> talking about Linux, Windows or you name it. I for one have often
> HDs encrypted this way exchanged between different machines: no
> problem whatsoever - if you know the password. :-)

If you use the TPM, it's completely *not* transparent to the OS. The
TPM is passive: it's purpose is to seal an encryption key, and only
unseal it if the platform integrity (including the OS) is verified.

Regards,
--=20
Yves-Alexis

--=-8v15IsaWWMwOQvrw560R
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: This is a digitally signed message part

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2

iQEcBAABCAAGBQJVkadqAAoJEG3bU/KmdcCldCEH/RDlfqHfqok4TweUl0+rOkat
U5KVfk0LxIuu94p62ZC9U9Il5ee+7NVV94i8HULhNzF5T07CjHAQ7IbociAfv/2d
f9sW5sBXddGnDgqRU/PbeudW6tVkA0dCS8lncSTpJ6t7KnTfb7RNw/aLyhToSoto
InekJ4rwvUfOwNKi3BF078fGlvFDB98E5tr42jA4KuOHo1DS8xqpCCvhssuB4bJW
p7me7ab8FBZYV/dV1dz02AwENmcI0CE9FijV6vL/PJGVHm906gjapTe/jv8Eje9b
Ak7O+G4KNvrfjWnOZPKaM8iIwyzm57OJdBoudLYfTCGFK+wXEzfH4JmkxdnpM8s=
=LxXP
-----END PGP SIGNATURE-----

--=-8v15IsaWWMwOQvrw560R--