TPM 2.0 chip for Windows 11
Microsoft has announced that only systems with TPM 2.0 can receive the major Windows 11 update. In this article, we will get acquainted with this chip and its connection with Windows 11.
Microsoft’s new operating system called Windows 11 is scheduled to be available to Windows 10 users in October as a free update. This is great news for most users who are currently running Windows 10; But the list of minimum system hardware specifications required to run Windows 11 has worried some users. One of these hardware requirements is an almost unknown security feature called TPM (Trusted Platform Module) which, according to Microsoft, can only run TPM 2.0 version of Windows 11.
What is TPM?
The simplest definition of a TPM is a microchip on a computer motherboard, some of which is separate from the main processor and memory. This microchip is similar to a number screen, for example, to disable the home alarm or the authentication application that you use to log in to your bank account. In this scenario, turning on the computer means opening the door to the house or entering the username and password on the bank account login page. If you do not enter your password within the specified time, the alarm will sound or you will not be able to access your bank account.
Different forms of TPM
TPMs come in many forms. According to Trusted Computing Group, the company responsible for setting the standards for this microchip, TPM runs as a single physical chip integrated into the main processor unit or as code in the firmware, in addition to a separate chip. This method is almost as secure as a separate TPM chip; Because it uses a secure environment separate from other programs to run this security protocol. Intel, AMD, and Qualcomm use firmware-implemented TPMs. The third type of TPM is virtual and runs entirely in software. TCG does not recommend using this TPM model; Because the operating system is vulnerable to hacker manipulation and possible security problems.
What are the uses of TPM?
The most basic use of TPM is to create a password to log in. This microchip automatically protects the password instead of storing it on the hard disk. If a system has a TPM chip, the user can create and manage cryptographic keys to lock specific systems or files. Many people use TPM to enable Windows BitLocker encryption tool. When you turn on the system equipped with TPM and BitLocker, this microchip performs tests to ensure that the conditions for booting the system are safe. If the TPM senses that the hard disk has moved (something that happens when it is stolen), it will lock the system.
Why do you need TPM 2.0 to run Windows 11?
TPM is a better option than the old methods of securing Windows PCs. Since July 2016, Microsoft has required TPM 2.0 support for all new PCs running different versions of Windows 10. Because of Microsoft’s strict security policies, Windows 11 will only run on PCs with the TPM 2.0 microchip. If you have already downloaded and run the PC Health Check tool to check for Windows 11 compatibility, it will only show you if your system is ready for this major update if TPM 2.0 is enabled.
Which computers support TPM 2.0?
If your computer supports other hardware specifications required to run Windows 11, it probably also supports TPM 2.0; But the TPM standard is relatively new. If you bought your computer after 2016, its motherboard is definitely with TPM 2.0; But if your computer is older than this, it probably either has an older version of TPM 1.2, which Microsoft says is not recommended for Windows 11 or has no TPM at all. “Many PCs that are less than four years old can be upgraded to Windows 11,” Microsoft notes in the Windows 11 FAQ section.
Can TPM be added to the computer?
If you have assembled your desktop PC in the last few years and have no problem manipulating the hardware and software security settings in the system BIOS, you can probably add a TPM 2.0 chip to your motherboard. Many motherboards have headers that are explicitly labeled “TPM”. The TPM module is less than $ 50 for some motherboard models. Of course, adding TPM to the motherboard is not as simple as buying a module and connecting it to the header. Even after installing TPM on your computer, you need to make sure it is set correctly in the BIOS so that the Windows operating system can detect it.