I'm Sorry Dave, I'm Afraid I Can't Do That

My firm is technically a 'start-up', still, although we are growing steadily.  We don't carry a lot of the infrastructure and overhead other massive consulting firms do.  This means that we all perform more integral internal roles on top of our line work (in our spare time, mostly).   I am part of the 'Tech Team' (which thankfully now includes 3 other tech savvy admins, although i used to be the only one a couple  years ago).  We manage all the IT assets for our mobile workforce including hardware, software and services.  We've been using Dell notebooks for 3 going on 4 years now and we can't complain. 

But this last week i went to wipe a returned notebook to ready it for reissue and found something i'd never noticed before.  It appears that Dell notebooks carry a TPM chip.  Which in theory sounds like no big deal - it's a hardware managed method of encrypting and securing your data.  A little digging though and I find it's a bit more controversial than that.  Even if you are one of those who thinks the legendary rms position is a tad hyperbolic*, it's still hard to disagree with the EFF pov which i think gives it a fair shake.

In practice, with respect to our Dell laptops, the TPM is latent until the user activates it and establishes ownership.  Says the Dell website:

Well apparently, this "trust bond" is so intense that it prevents me from deactivating the chip and wiping the drive completely, even though i know the "owner's" TPM  password/sign-on.  I will have to do some more reading on the software that runs it, and poking around on message boards, in order to find out how to kill it...

*...i am not one of those who think that, btw - i pretty much agree with rms, but i also believe in the coming robot war.