|
Infineon Security Platform Solution |
Managing the Emergency Recovery Functionality
The Infineon Security Platform Solution Software is designed to offer large scale support not only for standard work flows, but also for recovery operations on the system in case of a severe error situation.
The worst kind of problem is a damage to the Trusted Platform Module. This situation results in a loss of the Infineon Security Platform Owner, which is the physical root for secrets as well as the logical root for all Infineon Security Platform User specific keys. Whenever the Trusted Platform Module must be replaced, a new Infineon Security Platform Owner is created, as there is no way to transfer an existing key from one Trusted Platform Module to another.
To overcome this potential problem, an Emergency Recovery mechanism is integrated in the Infineon Security Platform Solution Software. This mechanism allows the re-encryption of Basic User Keys from one Infineon Security Platform Owner to another. To do this, the Security Platform Feature Backup (including Emergency Recovery) has to be configured when the Infineon Security Platform is set up. The administrator does this using Security Platform Quick Initialization Wizard or Security Platform Initialization Wizard.
The restoration in case of emergency is done using the Security Platform Backup Wizard.
 |
In server mode Backup and Restoration is handled by Trusted Computing Management Server, except Backup and Restoration of Personal Secure Drive (PSD) image files. |
Emergency Recovery Token, Password and Archive
The Emergency Recovery concept is similar to Password Reset concerning the usage of token, password and archive.
Restoring user keys in case of emergency requires some information stored in an archive. Emergency Recovery data in this archive can only be used in combination with a recovery token which is protected with a dedicated password.
The archive contains encrypted copies of Basic User Keys in order to allow restoration in case of Trusted Platform Module failure. If Emergency Recovery is not set up, users may not be able to restore their encrypted data in case of Security Platform failure. Emergency Recovery is set up once, and the concerned archive is automatically accessed later by Security Platform components. The archive must be accessible for all users of this Security Platform.
For some general aspects on handling Emergency Recovery refer to the Frequently Asked Questions.
Restore Emergency Recovery Data Step by Step
|
Forced User Initialization when Backup Archive is not available: If the Basic User Key cannot be loaded (for example as a result of clearing Trusted Platform Module ownership and taking ownership again) then Security Platform User Initialization Wizard does not allow to proceed with user initialization. The correct step in this situation is to restore Emergency Recovery data. If for some reason the Backup Archive is not available (for example it was lost or corrupted) then the Basic User Key cannot be restored. To proceed with the creation of a new Basic User Key in this situation the Security Platform User Initialization Wizard must be started with command line parameter: SpUserWz.exe /forceinit. Note:
|
©Infineon Technologies AG