Setting a HDD password in the BIOS -- did I do it right?

[domino66]

I don't want to encrypt my HD for performance/speed reasons, but have read that a HDD password (the ATA spec variety, not just a password to access the BIOS, or the W10 password to log into windows) is a reasonable precaution to take.

But the Asus Zenbook BIOS screen is really confusing: see the image below. Each of those 4 red arrows are things that I can select / set a password for, but I'm completely confused about what each one of them does, and the and the Asus online manual doesn't go into any detail at all...

Cliff's:

• 
  - What do each of those 4 options do?
  - I'm looking for the option that won't even allow my laptop to boot up without a password
  - While I know this doesn't encrypt any of my data, my understanding is that this is still relatively difficult to bypass (can't just pop HDD into a different machine)...there are apparently tools that can defeat it, but all I want is some additional protection against garden-variety thieves (at least givig me some time to change sensitive login credentials.)
  - I chose the FOURTH red arrow option (which is what changed the HDD Password Status field from "NOT INSTALLED" to "INSTALLED" (as shown)...I'm now prompted for a password when I reboot my machine but I want to make sure: did I do it right?
  

 

[jojesa]

BIOS
Administrator password: To change BIOS settings the Administrator password is required if set.
User password: To boot into Windows the User password is required if set.

HDD
User password: To boot into Windows and access HDD data the user password is required if set.
Master password: Is used to override User password or give access to HDD data.

With the Administrator password you can reset user's password.
To reset the Administrator password by manufacturer, proof of purchase might be required.
Resetting HDD password is impossible if encrypted.
Some manufacturers could be able to access the HDD passwords in the BIOS and could give it to law enforcement with a warrant.
Some Linux tools available in the web could remove the HDD user password.

 

[domino66]

BIOS
Administrator password: To change BIOS settings the Administrator password is required if set.
User password: To boot into Windows the User password is required if set.

HDD
User password: To boot into Windows and access HDD data the user password is required if set.
Master password: Is used to override User password or give access to HDD data.

With the Administrator password you can reset user's password.
To reset the Administrator password by manufacturer, proof of purchase might be required.
Resetting HDD password is impossible if encrypted.
Some manufacturers could be able to access the HDD passwords in the BIOS and could give it to law enforcement with a warrant.
Some Linux tools available in the web could remove the HDD user password.

OK, thx...not sure I understand the difference between your "BIOS / User password" and the "HDD / User password", as you explained them. Seems like they do roughly the same thing...if a person doesn't know it, he can't boot into Windows(?) Or would data on the HDD be accessible via DOS or some non-windows environment, if I only set the "BIOS/User password"?

Secondly, I guess I don't understand the difference between the HDD/User-password, and the HDD/Master-password. Under what circumstances would the 'Master' be used? As best I can tell, I've only set ONE of the four: the HDD/User-password...seems like -- given what I described wanting in my OP -- I did it right?

 

[jojesa]

OK, thx...not sure I understand the difference between your "BIOS / User password" and the "HDD / User password", as you explained them. Seems like they do roughly the same thing...if a person doesn't know it, he can't boot into Windows(?) Or would data on the HDD be accessible via DOS or some non-windows environment, if I only set the "BIOS/User password"?

The "BIOS / User password" and the "HDD / User password", might behave the same is some scenarios.
If you have a "BIOS / User password" and your HDD is taken, then they will have access to the data on it.
That wouldn't be the case if you have set a "HDD / User password".

Secondly, I guess I don't understand the difference between the HDD/User-password, and the HDD/Master-password. Under what circumstances would the 'Master' be used? As best I can tell, I've only set ONE of the four: the HDD/User-password...seems like -- given what I described wanting in my OP -- I did it right?

Lets say your computer manufacturer gets a warrant to access the data on your HDD, they could give access to law enforcement with a "HDD/Master-password" since they don't know or might not be able to crack or pay to crack your password.

 

[domino66]

OK, thx...not sure I understand the difference between your "BIOS / User password" and the "HDD / User password", as you explained them. Seems like they do roughly the same thing...if a person doesn't know it, he can't boot into Windows(?) Or would data on the HDD be accessible via DOS or some non-windows environment, if I only set the "BIOS/User password"?

The "BIOS / User password" and the "HDD / User password", might behave the same is some scenarios.
If you have a "BIOS / User password" and your HDD is taken, then they will have access to the data on it.
That wouldn't be the case if you have set a "HDD / User password".

Secondly, I guess I don't understand the difference between the HDD/User-password, and the HDD/Master-password. Under what circumstances would the 'Master' be used? As best I can tell, I've only set ONE of the four: the HDD/User-password...seems like -- given what I described wanting in my OP -- I did it right?

Lets say your computer manufacturer gets a warrant to access the data on your HDD, they could give access to law enforcement with a "HDD/Master-password" since they don't know or might not be able to crack or pay to crack your password.

Oh, OK, so it sounds like you're saying that an individual (like me) is not even ABLE to set a HDD/MASTER-password? i.e. it's something that only the manufacturer has access to? (If so, it seems strange that that option would even be clickable in the BIOS for an individual buyer...if it's just meant for a master override of a user-defined HDD/User password(?) Or am I mis-understanding still? Thanks again for your responses.

 

[jojesa]

[

Oh, OK, so it sounds like you're saying that an individual (like me) is not even ABLE to set a HDD/MASTER-password? i.e. it's something that only the manufacturer has access to? (If so, it seems strange that that option would even be clickable in the BIOS for an individual buyer...if it's just meant for a master override of a user-defined HDD/User password(?) Or am I mis-understanding still? Thanks again for your responses.

Depending on system and manufacturer the HDD master password might be already set.