Re: Encrypt file systems ?
"It's also worth checking that any new workstation or server systems being ordered (for business, at least) have TPM chips fitted."
Have you audited them to ensure that the T for "trusted" is justified? No? Hand in your tin foil hat 8)
Seriously though, how the hell do we know that those things do what we think they do?