CCE-8496-2Platform: win7 | Date: (C)2012-05-18 (M)2023-07-04 |
Validation of the 'Core Root of Trust of Measurement (CRTM), BIOS, and Platform Extensions' Platform Configuration Register (aka PCR 0) by the Trusted Platform Module (TPM) should be enabled or disabled as appropriate.
Parameter:
enabled/disabled
Technical Mechanism:
(1) GPO: Computer ConfigurationAdministrative TemplatesWindows ComponentsBitLocker Drive EncryptionOperating System Drivess4-o1PCR 0: Core Root of Trust of Measurement (CRTM), BIOS, and Platform Extensions
(2) Registry Key: HKEY_LOCAL_MACHINESOFTWAREPoliciesMicrosoftFVEPlatformValidation
CCSS Severity: | CCSS Metrics: |
CCSS Score : | Attack Vector: |
Exploit Score: | Attack Complexity: |
Impact Score: | Privileges Required: |
Severity: | User Interaction: |
Vector: | Scope: |
| Confidentiality: |
| Integrity: |
| Availability: |
| |
References: Resource Id | Reference |
---|
Microsoft Security Compliance Management Toolkit for Windows 7, Version 1.0: "Windows 7 Security Baseline Settings.xlsm" spreadsheet | Worksheet: Bitlocker Policy Settings; Row: 33 |
Microsoft Security Compliance Management Toolkit for Windows 7, Version 1.0: "Windows 7 Security Baseline.xml" | Setting Index #863: This is a setting option. Refer to the following parent setting for additional information: Configure TPM platform validation profile |
Microsoft Online Documentation | http://technet.microsoft.com/en-us/library/ee706521(WS.10).aspx |
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:14632 |