I have learned that Balena does not support a “secure boot + disk encryption” solution (see
Intel NUC and TPM), which is a large frustration for me at the moment.
I wonder if I could get some disk data protection by a so called harddisk lock. I believe harddisk locks are quite common when it comes to laptops, not involving any encryption but simply using a builtin disk feature that makes the disk unusable without the proper password.
- Does anyone know of any Intel NUCs solutions where I can lock the disk from the BIOS, so the BIOS unlocks the harddisk at boot without any human intervention?
- If such a solution exists, can I assume the Balena platform will work just fine with it?