DMA Remapping support of Intel Ethernet Adapter (i210) driver for classified Secured-core PCs

Secured-core PCs, such as Portege / Tecra X30-F, X30-G, X30W-J, X40-F, X40-G, X40-J, X40-F, X50-F and X50-G, meet a specific set of device requirements that apply the security best practices of isolation and minimal trust to the firmware layer, or the device core, that underpins the Windows operating system.

Secured-Core PC infographic by Microsoft

These devices are designed specifically for industries like financial services, government and healthcare, and for workers that handle highly-sensitive IP, customer or personal data. Compatible Secured-core PCs combine identity, virtualization, operating system, hardware and firmware protection to add another layer of security underneath the operating system. Unlike software-only security solutions, Secured-core PCs are designed to prevent these kinds of attacks rather than simply detecting them.

Overall, these requirements enable customers to boot securely, protect the device from firmware vulnerabilities, shield the operating system from attacks, prevent unauthorized access to devices and data, and ensure that identity and domain credentials are protected.

Classified Secured-Core PC's, exceed the requirements for enhanced hardware security, which necessarily include disabling and removal of native Thunderbolt security settings. Usually Thunderbolt security settings are configurable by the user, for example via BIOS Setup utility.

Since usual Preboot eXecution Environment (PXE) requires changing native Thunderbolt security settings, users might run into troubles trying to boot into PXE using common options and parameters, provoked by the missing Thunderbolt security settings or missing DMAr (DMA remapping) support of the Ethernet adapter.

No LAN connectivity issues can appear when using:

Preboot eXecution Environment (PXE)
Windows PE environments
Windows 10 Logon User Interface

Since implemenation of native Thunderbolt security settings within the BIOS Setup is removing the Secured-core PC classification, a Intel Ethernet Adapter which support DMAr (DMA remapping) support is required to resolve the issues.

For more information about the necessary Intel Ethernet Adapter driver including DMA remapping support, pease see details in the section below:

Thunderbolt 3 Dock (PA5281E*) Intel Ethernet Adapter (i210) including DMAr (DMA remapping) support

Please visit our download page driver download page to obtain the Thunderbolt 3 Dock (PA5281E*) Intel LAN driver V12.18.9.6 (i210) or later, which support DMAr (DMA remapping).

RESOLUTION | Detailed

Additional Technical Background

For more information about the technical background, please refer to the following documentation:

dynabook Knowledge Base Document:
Impact for Business of Modern Devices in a Thunderbolt 3 Dock Environment
dynabook Knowledge Base Document:
Thunderbolt 3 and USB Type-C Adapter / Docking Solutions - Supported features by platform
Intel Whitepaper about UEFI DMA Protection:
Firmware Security DMA Protection in UEFI
Microsoft Information about securing Windows 10:
Standards for a highly secure Windows 10

Thunderbolt Kernel DMA Protection Details

More information about Kernel DMA Protection for Thunderbolt:

https://docs.microsoft.com/en-us/windows/security/information-protection/kernel-dma-protection-for-thunderbolt

Kernel DMA Protection Infographic by Microsoft

Document ID:

Doc Type:

Operating System

Online Date:

2021-02-09 00:00:00

Date Modified:

2025-06-11

Category:

Software

Company:

Intel

Product Category:

Mobile Devices

Product Group:

Tecra, Portege

Product Series:

Tecra X Series, Portege X Series

Product:

Tecra X40-F, Portege X30-F, Tecra X50-F, Portege X50-G, Portege X40-G, Portege X30-G, Portege X30W-J, Portege X40-J

Model Number:

PMR31E, PUR33E, PUR31E, PMR33E, PLR31E, PLR33E, PUR30E, PLR41E, PLR43E, PMR41E, PMR43E, PUR41E, PUR43E, PDA11E, PPH11E

Operating System:

Keywords:

BIOS, Docking Device, Drivers, LAN, Network, Operating System, Security, Setup, TCP/IP, Thunderbolt, Windows 10

Dynabook provides this information "as is" without warranty of any kind, either express or implied, including, but not limited to, the implied warranties of merchantability or fitness for a particular purpose. Dynabook shall not be responsible for the topicality, correctness, completeness or quality of the information or software provided. Dynabook is not liable for any damage caused by the use of any information or software provided, including information that is incomplete or incorrect. Any trademarks used herein belong to their respective owners.