Certified Ethical Hacker (CEH v11) — Question 127

What piece of hardware on a computer's motherboard generates encryption keys and only releases a part of the key so that decrypting a disk on a new piece of hardware is not possible?

Answer options

• A. CPU
• B. UEFI
• C. GPU
• D. TPM

Correct answer: D

Explanation

The correct answer is D, TPM (Trusted Platform Module), which is specifically designed to generate and manage encryption keys securely. The other options, such as CPU, UEFI, and GPU, do not have the dedicated functionality to limit key access in the same way that TPM does, which is essential for maintaining the security of encrypted disks.