Google ATTRO website www
 
   
 
 
Single Board Computer
Industrial Motherboard
Embedded Little Board
Fanless Embedded PC
Industrial Panel PC
Industrial Display Panel
Server Chassis
Industrial Backplane
Industrial Power Supply
Digital Signage
Network Communication
Video Surveillance
Peripherals
CPU Cooling Fan
Solid State Disk
Compact Drive Bay
PCMCIA Drives
Riser Card
Add-on Card
       

TPM (Trusted Platform Module Solution)
Hardware base security solution for data protection and reliable authentication via TPM that stores key, passwords and digital certificates.

Features Ordering Info Datasheet

INFINEON
SLB9635 TT1.2		 SINOSUN
SSX35BCB		 WINBOND
WPCT200

Features
TPM Solution Features
Centralized Security Management
Data Security Management
Applications
TPM Function Comparison
Secure Startup
Enhanced Attestation
  TPM Solution Features
Type INFINEON
SLB9635 TT1.2 		SINOSUN
SSCX 35BCB 		WINBOND
WPCT200
Secure Startup Root of Trust Measurement of early boot devices
TCG Specification TCG 1.2 Compliance Trusted Platform Module
Interface Low Pin Count
Cryptographic Accelerator HAS-1/ RSA algorithm / TRNG /
Asymmetric Key Operation Up to 2048 bit Key Length
Software Structure TCG Software Stack 1.2 Compliant
Anti H/W Attack Sensors and active shield - -
TSS API support MS-CAPI / PKCS#11 MS-CAPI Support MS-CAPI
Certifications EAL 4 EAL 3 -
TPM S/W Tool Function TPM Management File/Folder encryption/Decryption Personal Secure Drive Secure E-Mail Key Transferring Security Policy TPM Management File/Folder Encryption/Decryption Virtual Encrypted Disk Password Management TPM Management
Enhanced Authentication Support Smart Card / USB Token Biometrics Sensors PKCS#12 N/A Biometrics Sensor
  TPM Function Comparison
Function Description SINOSUN INFINEON WINBOND
Initialization Set TPM Owner Password v v v
Emergency Recovery v v -
Set TPM User Password v v v
Management Self Test & TPM
Disable / Enable 		v v -
Change Password v v v
Reset User Password v v -
Backup & Restore v v -
Data Security Management Virtual Encrypted Disk v v -
File / Folder Encryption v v -
Private Information Management Password Management Common Website Application - -
MS-CAPI AP Support MS Cryptographic Application Program Interface MS EFS MS EFS MS-Outlook/
Outlook Express MS-Office 2000/2003/ XP
MS-Internet Explore 		Windows Secure Login
PKCS#11 AP Support Public Key Cryptographic Standard - Netscape Communication RSA Secure ID Check Point Secure Remote/Secure Cline Check Point VPN-1/ Firewall-1 NG Entrust Desktop Manager Solution GemSafe for TPM/Smart Card -
Key Transfer To transfer user key to other platform - v -
Anti-S/W Malicious Attack Dictionary Attack countermeasures - v -
Secure Policy Configuration Local system and user security policy - v -
Enhanced Attestation Biometric / Smart Card / USB Token - Smart Card / USB Token / VPN / Digital Certificates Fingerprint
  Centralized Security Management

Initialization
Set Ownership
Initialized Users
Backup & Recovery

Enhanced Authentication
Secure Token
Smart Card
Biometrics
Certificates 		Policy Function
Set Policy
Platform Deployment
Update Security
   Policies
Create Custom
   Policy 		Password Security
Reset Mechanism
Windows Password   Policy
Support Password   Management
  Secure Startup
Base on the Root of the Trust, the system boots up an uninterrupted "chain of trust" extended from lowest layer to the application.

Detect whether the Disk or LAN connection is modified, removed or even replaced
Verify the correctness of BIOS code of boot block
The compromised platform can be identified
Data exchange can be restricted to the appropriate extent

  Data Security Management
Encrypted Virtual Disk

Appears as an additional disk drive
Disk drive is not available for other users
Stores data as a continuous encrypted file on PC hard disk
Supports EFS data recovery agent

Microsoft Encrypted File System (EFS)

WindowsR Feature for NTFS volumes
  - Transparent file and folder encryption
  - Encrypted file sharing(WindowR XP)
  - Enterprise police support(Encryption Strength, algorithms,
    data recovery agent)
Strong TPM protection for EFS encryption keys
File context sensitive menu
  Enhanced Attestation
Encrypted Virtual Disk

Seed record safeguarded by TPM PKCS# or MS-CAPI module
  (2048 bits RSA encryption)
Seed record access requires user key authorization
More friendly user interface
  Applications
Encrypted Virtual Disk

Seed record safeguarded by TPM PKCS# or MS-CAPI module
  (2048 bits RSA encryption)
Seed record access requires user key authorization
More friendly user interface
Ordering Info
TPM-IN01-R10 INFINEON 20 pin Trusted Platform Module with S/W Management Tool
TPM-SI01-R10 SINOSUN 20 pin Trusted Platform Module with S/W Management Tool
TPM-WI01-R10 WINBOND 20 pin Trusted Platform Module with S/W Management Tool
   

Copyright © 2007-2008 ATTRO Technology Inc. All Rights Reserved.