What is a TPM? Essential Reasons for Windows 11

After Microsoft announced the minimum system requirements for Windows 11, all the hell collapsed when users discovered that they needed a TPM chip to run Windows 11. The updated PC Health app can now check if your PC can run Windows 11 and see why your PC is. It may not be compatible with this free app. As a result, many users flocked to Amazon to purchase the TPM security module. However, not many people are aware that the TPM chip may already be integrated into the processor. So if you’re wondering exactly what a TPM is and why it’s essential for Windows 11, see the instructions below. It briefly describes the TPM security chip and provides a wide range of ideas on the subject.

Everything you need to know about the TPM and why Windows 11 needs a TPM (2021)

If you can’t run Windows 11 on your PC and use a free tool that explains why the TPM turned out to be one of the limitations, this detailed guide will help you understand the security chip in detail.

What is a TPM? What is its use?

Basically, the TPM (Trusted Platform Module) is a hardware chip that protects your PC from ransomware and other types of hacks and malware. A cryptographic machine that holds the key to confidential informationIncludes your PC PIN or password, Windows Hello authentication data, Bitlocker encryption keys, security-critical keys, and more.

Since this is a hardware-based module, it is impossible for malware to manipulate the module using traditional software techniques. Therefore, the TPM chip is a highly hardware-based “root of trust” that the OS can always trust.

What is TPM (Trusted Platform Module)?
TPM chip

To show a similar example in the Android world, the Google Pixel smartphone TitanM security chip Before booting the device, verify the firmware to see if it has been tampered with. Apart from that, the Titan M chip also protects payment information, lockscreen passcodes, and other sensitive information.Samsung too Add another Knox chip It provides hardware-based authentication for passwords, payments, sensitive files, etc. All this points to the way hardware-based protection should go, and Microsoft has properly incorporated the TPM requirements for Windows 11.

Why is TPM essential for Windows 11?

Windows computer Favorite among hackers A sophisticated attacker. This is mainly due to how easy it is to infect the entire system by installing programs from the web or automating scripts on Windows. Remote execution is another favorite method for hackers to exploit vulnerable PCs. The days when low-threat viruses were blocking Task Manager are over. To resolve the issue, you need to run an antivirus program.

What is TPM (Trusted Platform Module)?

According to Microsoft, 83% of the attacks companies have experienced in the last two years are “Firmware attack“A firmware attack is an exploit that attacks the firmware of the motherboard itself, controls hardware components, modifies the boot process, and easily performs code injection. The main purpose of a firmware attack is Windows. Hello is stealing sensitive information such as fingerprint / face data, bank details, Microsoft credentials, and encryption keys.

The· Very high threat level for firmware attacks.. Therefore, a TPM is required to protect sensitive information in Windows 11. The attacks are so sophisticated that even the TPM has failed to protect the encryption key from recent Specter and Meltdown vulnerabilities. So it makes sense for Microsoft to create a secure hardware-based authentication system to keep users on the secure side as they move forward.

Which processor has TPM support built in?

The TPM module is usually built into the CPU, but for custom-built PCs, there is a TPM header on the motherboard to which you can connect a compatible TPM module. Almost every processor has a TPM module since at least 2014. Intel started Integrate TPM on chip with Haswell architecture (2013, 4th generation) However, the K series that has acquired the Trusted Platform Module integrated with the 6th generation (2015) is excluded.

What is TPM (Trusted Platform Module)?

Therefore, I think Windows PCs with Intel since 2014 will support either TPM 1.2 or 2.0. Must be enabled from the BIOS / UEFI menu. For example, I have a 6th generation Intel i5 processor and TPM 2.0 is available on my PC. I had to enable it from the BIOS.

Also, if in doubt, does the AMD processor also support TPM? Well, the answer is yes. The TPM security chip is integrated directly into the CPU. Ryzen 2500 (2017) or later.. Below are the steps on how to enable the TPM on a Windows 10 PC.

How do I enable TPM in BIOS / UEFI and run Windows 11?

1. First, you need to do the following: Boot the BIOS or UEFI interface Of your PC. To do this, hold down the boot key while the computer is booting.

Note: For HP laptops, this is the “Esc” or “F10” key. The boot key may be different for other laptops and desktops. Therefore, search the internet for a specific boot key for your computer. If you are using a custom built desktop, the boot key depends on the motherboard manufacturer. It can be F12, F9, F10, etc.

How to enable TPM in BIOS / UEFI?

2. Once in the BIOS / UEFI interface What is called “TPM” or trusted platform technology.. Also known as PTT (Platform Trust Technology) on some Intel-based machines. On AMD machines, you may see the PSP, fTPM, or PTP options in the BIOS menu. Look around, jump to advanced settings, Make sure it is valid or available.. A TPM state may also exist, so go ahead and enable it.

How to enable TPM in BIOS / UEFI?

3. Next, Find “Secure Boot” option Under various menus And enable it.. If the secure boot option is grayed out, you need to set a password in the BIOS. On some laptops, you cannot enable secure boot unless you set a “supervisor” or “administrator” password. Therefore, you can set a password first and then enable secure boot. Needless to say, you need to remember your password. Otherwise, you will be locked out of your computer and you will not be able to access the BIOS.

How to enable TPM in BIOS / UEFI?

4. Next, “F10Click, press Enter to save and exit. The F10 is usually reserved for “save and exit”, but the keys may vary from computer to computer. It is recommended to check the BIOS / UEFI footnote.

How to check if a Windows 10 PC has a TPM module?

  • Method 1: Use TPM Manager

1. After enabling TPM in the BIOS / UEFI menu, clickWindows + RUse the keyboard shortcut to open the run window. Here, tpm.msc Press Enter.

How to check the TPM module on a Windows 10 PC?

2. A new window will open. here,”Status“Please check if the TPM chip is available. There is also a TPM version just below.

How to check the TPM module on a Windows 10 PC?

  • Method 2: Use Device Manager

Another way is to use the Device Manager to check the availability of the TPM. Press the “Windows + X” shortcut and click “device Manager“.

How to check the Trusted Platform Module on a Windows 10 PC?

here,”Security deviceClick the “Menu” to display the TPM with version information.

How to check the TPM module on a Windows 10 PC?

Method 3: Use Windows settings

Finally, there is another way to check the TPM module on a Windows 10 PC. Open “Windows securityClick to go to the Device Security tab. Now click on the Security Processor details to see all the information about the TPM chip on your computer.

Security processor

Can I add a TPM module to my laptop / desktop motherboard?

As mentioned above, if you purchased a laptop in the last 5-6 years, your laptop may come with a TPM module. All you need to do is enable it from the BIOS.Sadly, if your laptop is running an old CPU, you Unable to add TPM chip This is because the laptop motherboard does not come with a TPM header. In addition, Microsoft allows certain OEMs to bypass TPM requirements for commercial purposes.

tpm header
Image: Rainer Knäpper, Free Art License

On the other hand, if you own a custom-built desktop PC, you can add a TPM security chip to your motherboard.most The motherboard comes with the required TPM header (TPM is engraved on the side), so you’re ready to go. However, when purchasing a module, make sure the chip and motherboard are compatible.

Apart from that, TPM chips are currently not found anywhere due to the surge in demand. We do not recommend paying an exorbitant price to buy a TPM chip. You have to wait for the price to go down.

Advantages and disadvantages of TPM

As explained above, the benefits of enabling the TPM are that it provides overall security, confidential information security, and OS integrity. Let’s take a look at the drawbacks of this security chip here.For regular users, let’s clarify that TPM does not stop malware and other types of advanced attacks On your PC. However, it blocks malware from stealing the most private and sensitive data. In that sense, TPM is not a one-stop solution for Windows safety and security. You still need to be careful when working with files downloaded from the web.

On the technical side, people who usually dual boot Windows and Linux may face some problems. TPM support (known in Linux as TCG) has been added to Linux since version 3.20, but there were some driver issues. You need to look at the Linux distribution and how it works on the TPM chip individually. Otherwise, there aren’t many issues you face with a TPM chip enabled in Windows 11.

Enable TPM to protect your Windows computer

This is a rough description of the TPM and is why Microsoft decided to require the TPM in Windows 11. I think this is a well-thought-out move as we move into the next decade of computing. Android, iOS, macOS, and Linux have become fairly secure, and it’s time for Windows to have the same level of security. Even if you get the error “PC can’t run Windows 11” due to an unsupported CPU, we recommend that you enable TPM as an appropriate security measure to protect your data in Windows 10 as well. I will. All from us. If you have any questions, please let us know in the comments section below.