Infineon Security Platform Solution - Quick Initialization Wizard

Secret Data

This dialog displays the generated secret data.

If you have not selected a removable media (e.g. USB flash drive) to store the wizard's output, you must print, save or memorize all generated secret data. You will need them to perform certain critical administrative and emergency-related tasks. Note that the amount and type of secret data depends on the previous platform and user status, and on your selection where to store them.

The following table provides details on the generated secret data and corresponding files. The labels USB and HD indicate whether the concerned secret data or file is created and saved, if you have selected a removable media (e.g. USB flash drive) or a hard disk (HD) to store the wizard's output.

Type	Purpose	Scope	Corresponding file
Owner Password (USB, HD)	Required to perform critical administrative Security Platform tasks.	Platform-specific. Automatically created during platform-specific initialization steps, if platform has not yet been initialized when this wizard was started.	Owner Password Backup File (USB) Default file name: SpOwner_<PC>.tpm where <PC> is the platform name. Only created and saved, if you have selected a removable media (e.g. USB flash drive) to store the wizard's output. In this case you do not explicitly need to know the Owner Password, since you can use the Owner Password Backup File from your removable media (e.g. USB flash drive).
Password for Emergency Recovery/Password Reset Token (HD)	Protects the combined Emergency Recovery/Password Reset Token which is needed to perform an Emergency Recovery and to reset Basic User Password.	Platform-specific. Automatically created during platform-specific configuration steps, if you have not selected a removable media (e.g. USB flash drive) to store the wizard's output and the platform had not been initialized when this wizard was started.	Combined Emergency Recovery/Password Reset Token File (USB, HD) Default file name: SpToken_<PC>.xml where <PC> is the platform name Note that this token does not require a dedicated password, if stored on a removable media (e.g. USB flash drive).
Password Reset Secret (USB, HD)	A user's personal secret which is required to reset his Basic User Password.	User-specific. Automatically created during user-specific configuration steps, if user had not been initialized when this wizard was started.	Password Reset Secret File (USB) Default file name: SpPwdResetSecret_<PC>_<User>.xml where <PC> is the platform name, and <User> is the user name (for local users) or a combination of user name and domain name (for domain users). Only created and saved, if you have selected a removable media (e.g. USB flash drive) to store the wizard's output. In this case you do not explicitly need to know the Password Reset Secret, since you can use the Password Reset Secret File from your removable media (e.g. USB flash drive).

General hints on the handling of secret data: See Password Handling.

©Infineon Technologies AG