Infineon Security Platform Solution |
Tokens, Archives and other Security Platform management files
The Infineon Security Platform Solution uses several files for management tasks such as backup, Emergency Recovery or Password Reset (e.g. tokens and archives). Some of them are for the Security Platform Administrator, others are for Security Platform Users. Please make sure not to mix up these file types.
The following table gives an overview of Security Platform management files.
File | Used by... | Purpose/Explanation |
Owner Password Backup File | Administrator | Used for
Owner Password authentication (instead of typing the Owner Password).
This file is compatible with the Owner Password Backup File generated by
the Microsoft application "Trusted Platform Module (TPM) Management".
This file is not required in server mode as the Trusted Computing Management Server handles the task of preparing and providing this password. |
Archives used for restoration, Emergency Recovery and Password Reset | Administrator/User | Contain Security Platform credentials, Security Platform settings and Personal Secure Drive
backups. Created by automatic and manual backups. Required for restoration in case of a broken hard disk or lost data or a broken
Trusted Platform Module. The Password Reset data in an archive is required to reset Basic User Passwords. These archives are not required in server mode as the Security Platform Password Reset and Backup and Restoration is handled by Trusted Computing Management Server. |
Emergency Recovery Token | Administrator | Created during the configuration of Security Platform Features (when Security Platform Initialization Wizard is used).
Required for restoration, if Emergency Recovery is needed (broken Trusted Platform Module). This file is not required in server mode as the Security Platform Restoration is handled by Trusted Computing Management Server. |
Password Reset Token | Administrator | Created during the configuration of Security Platform Features (when Security Platform Initialization Wizard is used). Required to prepare the Password Reset for a specific user. This file is not required in server mode as Password Reset is handled by Trusted Computing Management Server. |
Emergency Recovery/Password Reset Token | Administrator | Created during Security Platform Initialization (when Security Platform Quick Initialization Wizard is used). Combines Emergency Recovery Token and Password Reset Token in one file. |
Migration Archive | User | Contains user keys and certificates to be migrated to another Security Platform. Created during
the Export step of migration. Required during the Import step of migration. This file is not required in server mode as Migration is handled by Trusted Computing Management Server. |
Personal Secret for Password Reset | User | Created during the configuration of Security Platform User Settings. Required to reset a user's Basic User Password. |
Reset Authorization Code File | Administrator/User | Contains the Reset Authorization Code which
is needed to reset a user's Basic User Password. Created during the administrative steps of Password Reset. Required during the user
steps of Password Reset. In server mode this file is created by Trusted Computing Management Server. |
PKCS #12 file (Personal Information Exchange file) | User | Contains a user's private key and certificate. Needed to import a certificate. |
©Infineon Technologies AG