I hope to see experts answering that are familiar with fTPM technology like Intel PTT in connection to bitlocker.
In our IT world, so far, we have only relied on discrete TPM ("dTPM") modules. Since all new mainboards offer fTPMs, we are doing a little research whether this can be used as securely as the normal TPM. What I would like to look at in this question is a single aspect of this comparison dTPM/fTPM:
1 With a dTPM, when an attacker steals a bitlocked hard drive (TPM+PIN) and connects it to a different system, bitlocker would immediately ask for the recovery password.
2 With an fTPM (say Intel PTT), when an attacker steals a bitlocked hard drive (fTPM+PIN) and connects it to a different system that also has Intel PTT active, bitlocker would not ask for the recovery password but allow you to start the system if you know the PIN.
So from what I gather, the fTPM is software only, and although it relies on having Intel PTT hardware in this case, it is not in a part of the mainboard, but is part of the hard drive contents.
Can someone confirm this and tell me what part is responsible for validating the PBA PIN?
Why I ask: I tried this here in our lab and was surprised that you can simply move hard drives around from one board to another (same model) as long as Intel PTT was active. Before trying, I had thought that fTPMs would have the same "problem" as dTPMs: when the old mainboard dies, you will have to provide the recovery password - but I was wrong.