The platform seed is a random 512-bit value that is unique per platform. This seed is persistent and is retained through platform power-cycles, Intel® Converged Security Engine (Intel® CSE) firmware reconfiguration, upgrade and re-flash. However, the seed may be changed after an SVN (Security Version Number) upgrade; in this case, the last platform seed before the change can still be retrieved.
The platform seed is confidential: The platform seed can only be read by an Intel® DAL applet and can be used for binding to a specific platform or as a seed in the creation of cryptographic keys. It cannot be accessed (for example) by software running on the host.
The platform seed is also accessible from BIOS. Access from BIOS can be permanently disabled by burning an FPF (Field Programmable Fuse). This action is irreversible.
Class documentation: com.intel.crypto.PlatformSeed