Create Security Platform Owner

Infineon Security Platform

previous page next page

Infineon Security Platform Solution - Initialization Wizard

Create Security Platform Owner

Once the Trusted Platform Module is enabled, ownership must be set up in a one time action to associate the chip logically to the computer for further use. During this operation the Infineon Security Platform Owner is created and stored in the Trusted Platform Module together with the Infineon Security Platform Owner secret. This is protected by the Owner Password that must be defined here. You can either type in the Owner Password or generate a random Owner Password. You can save this Owner Password to a file and use this backup file with Owner Password, or even print it. If you have chosen the option to generate a random Owner Password, you can also make it visible for you to memorize or make a note of it. You need the Owner Password or the backup file with the Owner Password to administrate the Security Platform.

This page is not available in server mode as the Security Platform gets automatically initialized if the client system is integrated into a Trust Domain with centralized management, i.e. the administrator does not have to perform this task.

Taking Ownership by the Security Platform Initialization Wizard creates a new Storage Root Key (SRK). Usually you would setup a Security Platform Owner only once for a specific Trusted Platform Module. Since all your public key certificates are bound to the Trusted Platform Module's SRK, you will no longer be able to use these certificates with a newly created SRK.

The following table gives hints on how to use this wizard page.

Wizard Page Element Explanation
Password Set an Owner Password here. You can either manually type in an Owner Password of your choice or generate a random Owner Password.

To guarantee that the manually typed Owner Password fulfills principal quality requirements, a set of basic rules for password handling should be taken into consideration.
Confirm password Enter the password again to confirm (not necessary if you have generated a random password).
Random Click here to generate a random Owner Password instead of typing a new password. This way you can easily make sure to use a safe password which meets password length and complexity requirements.

Make sure to unhide, print or save the random password before you continue.
To File... Click here to save the new Owner Password to a backup file. You will be able to use this file for Owner authentication instead of typing the password.
Print... Click this button to print the Owner Password.

Make sure to store the printout in a safe location.
Hide passwords Uncheck this checkbox, if you want the see the passwords.

Note that due to policy Enable stringent password field security you may not be allowed to cut, copy, paste and see passwords in clear text.

©Infineon Technologies AG

previous page start next page