New Intel Protected Access Architecture Increases Data and Asset Security for Mobile PC's - Company Business and Marketing

Edge: Work-Group Computing Report, March 13, 2000

Intel Corporation Monday announced a new security architecture that provides increased data and asset protection for mobile PCs. Called the Intel Protected Access Architecture, it works by identifying the authorized user of the mobile PC through a device such as a fingerprint reader, smart card or USB "key" before proceeding to boot up the system. If the person attempting to use the PC is not authorized, the system will not boot up, preventing access to the system's data and rendering the system useless. This approach provides a stronger security solution than "BIOS passwords" alone, and could also remove the burden of users having to remember some passwords.

Proper implementation of Intel Protected Access Architecture in a PC can help ensure that only the authorized user has access to the data inside a system, and acts as a deterrent to theft of the system. Intel is working with mobile PC vendors, BIOS vendors and makers of security hardware devices to bring this architecture to market. Mobile PCs with this new technology are expected to be shipping in volume in early 2001.

"Whether you are on the road, in a classroom, at home or in the office, the mobile PC is the most versatile way to access the Internet anywhere, any time," said Frank Spindler vice president and director of marketing of Intel's Mobile Computing Group. "But with mobility, there's greater opportunity for the device to be left behind or stolen. Our goal with the Intel Protected Access Architecture is to help to create a strong barrier against notebook and data theft, making a stolen mobile PC useless."

How Intel Protected Access Architecture Works Intel Protected Access Architecture works before the operating system loads. It provides a simple mechanism for mobile PCs to query the user to ensure that the user is authorized to access the system, before allowing the system to boot up.

After turning on the PC, the user must be "authenticated" as the authorized user of that system by using a fingerprint reader (or other biometric device), a USB key, smart card, or other authentication device. In addition, a password or personal identification number code may be used to provide multiple factors of authentication. Once the user has been authenticated and the required level of "trust" between the user and the system has been established, the password-protected hard disk drive is automatically unlocked and the computer boots and loads the operating system and applications.

In addition, by storing the "key" to the hard drive in a protected location in the computer, and not the hard drive itself, Intel Protected Access Architecture can also help prevent data theft even if the hard drive were stolen.

The Intel Protected Asset Architecture is represented in a specification that is now available at http://developer.intel.com/design/security. Intel will also provide development kits, reference designs and other technical information to its customers to enable this technology.

Intel, the world's largest chip maker, is also a leading manufacturer of computer, networking and communications products. Additional information about Intel is available at www.intel.com.