VAIO User Guide SVZ1311 Series

Back | Back to Top
Troubleshooting
How to Use
Task

Notes on Encrypting Your Data (Infineon TPM Professional Package)
<TPM security chip equipped models>

Before encrypting your data with Infineon TPM Professional Package, read the following precautions for correct use.

Notes on encrypting the operating system files or program files

  • If the operating system files or the software application files are encrypted using the Encrypting File System (EFS) in conjunction with the Trusted Platform Module (TPM), you may not be able to log onto Windows or operate the software applications properly. Do not encrypt the Windows folder, the Program Files folder, and files in those folders.

  • Observe the following when using the EFS.

  • Do not change the following default settings under Files and Folders on the View tab in the Folder Options window.
    Don’t show hidden files, folders, or drives (selected by default)
    Hide protected operating system files (Recommended) (selected by default)

  • Do not change file attributes (read only, hidden, and system), unless necessary.

  • Do not encrypt the Users folder and the account folder in the Users folder all together.

Notes on encrypting key files or files on the Personal Secure Drive

If you encrypt files in the following folders using the EFS under these conditions; the TPM software has been installed on your VAIO computer; the TPM has been initialized; and the EFS has been enabled during the user initialization, the TPM software becomes unstable and your encrypted data cannot be restored.
Do not encrypt the files using the EFS or change folder and file attributes in the following folders.
With the TPM software installed and initialized, the files cannot be encrypted because they have system attributes.

  • Folders containing key files or data files

  • C:\ProgramData\Infineon

  • C:\Users\All Users\Infineon

  • C:\Users\<account name>\AppData\Roaming\Infineon

  • Files on the Personal Secure Drive

  • C:\Security Platform\Personal Secure Drive\System Data\xxxxxxxx.FSF

Notes on encrypting backup files or other files

You cannot restore data in case of emergency if you encrypt the backup archive or emergency recovery token. Also, if you encrypt the password reset token or password reset secret, you cannot reset the password.
Do not encrypt the following files or folders in Documents\Security Platform and Security Platform in a removable media.
If you accidentally encrypt the following files or folders using the EFS; archives for the TPM software; emergency recovery token; password reset token; or password reset secret, the data cannot be restored.
Sony assumes no liability for any problems and damage arising out of your misuse of encryption.

  • Automatic backup archive file

  • Default file name: SPSystemBackup.xml or
    SPSystemBackup_<Your computer name>.xml

  • Automatic backup data storage folder (including files in the folder)

  • Folder name (Fixed): SPSystemBackup (The SPSystemBackup.xml file is created in a subfolder of the folder being created.) or
    SPSystemBackup_<Your computer name> (The SPSystemBackup_<Your computer name>.xml file is created in a subfolder of the folder being created.)

  • Emergency recovery token file

  • Default file name: SPEmRecToken.xml

  • Password reset token file

  • Default file name: SPPwdResetToken.xml

  • Consolidated emergency recovery/password reset token file

  • Default file name: SPToken_<Your computer name>.xml

  • Password reset secret file

  • Default file name: SPPwdResetSecret.xml or
    SpPwdResetSecret_<Your computer name>_<User name>.<Domain name>.xml

  • Encryption key and backup file for a certificate

  • Default file name: SpBackupArchive.xml

  • PSD backup file

  • Default file name: “Drive name”-Personal Secure Drive.fsb

  • Owner password backup file

  • Default file name: SpOwner_“Your computer name.” tpm

  • Protocol file

  • Default file name: SpProtocol_<Your computer name>_<User name>.<Domain name>.txt

© 2012 Sony Corporation