{"id":287412,"date":"2021-06-30T13:40:13","date_gmt":"2021-06-30T10:40:13","guid":{"rendered":"https:\/\/en.buradabiliyorum.com\/why-does-windows-11-need-tpm-2-0\/"},"modified":"2021-06-30T13:40:13","modified_gmt":"2021-06-30T10:40:13","slug":"why-does-windows-11-need-tpm-2-0","status":"publish","type":"post","link":"https:\/\/buradabiliyorum.com\/en\/why-does-windows-11-need-tpm-2-0\/","title":{"rendered":"#Why Does Windows 11 Need TPM 2.0?"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_84 counter-hierarchy ez-toc-counter ez-toc-custom ez-toc-container-direction\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<label for=\"ez-toc-cssicon-toggle-item-6a26248510b9c\" class=\"ez-toc-cssicon-toggle-label\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #dd3333;color:#dd3333\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #dd3333;color:#dd3333\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/label><input type=\"checkbox\"  id=\"ez-toc-cssicon-toggle-item-6a26248510b9c\" checked aria-label=\"Toggle\" \/><nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/buradabiliyorum.com\/en\/why-does-windows-11-need-tpm-2-0\/#What_Is_a_TPM\" >What Is a TPM?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/buradabiliyorum.com\/en\/why-does-windows-11-need-tpm-2-0\/#Why_Does_Windows_11_Need_It\" >Why Does Windows 11 Need It?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/buradabiliyorum.com\/en\/why-does-windows-11-need-tpm-2-0\/#Why_Isnt_TPM_12_Good_Enough\" >Why Isn\u2019t TPM 1.2 Good Enough?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/buradabiliyorum.com\/en\/why-does-windows-11-need-tpm-2-0\/#Microsoft_Has_Required_a_TPM_on_Some_New_PCs_Since_2016\" >Microsoft Has Required a TPM on Some New PCs Since 2016<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/buradabiliyorum.com\/en\/why-does-windows-11-need-tpm-2-0\/#Does_Your_PC_Have_a_TPM_Is_It_Disabled\" >Does Your PC Have a TPM? Is It Disabled?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/buradabiliyorum.com\/en\/why-does-windows-11-need-tpm-2-0\/#Microsoft_Made_the_Situation_a_Confusing_Mess\" >Microsoft Made the Situation a Confusing Mess<\/a><\/li><\/ul><\/nav><\/div>\n<p><strong>&#8220;#Why Does Windows 11 Need TPM 2.0?&#8221;<\/strong><\/p>\n<div>\n<figure style=\"width: 1200px\" class=\"wp-caption alignnone\"><img loading=\"lazy\" decoding=\"async\" class=\"type:primaryImage wp-image-738182 size-full\" src=\"https:\/\/www.howtogeek.com\/wp-content\/uploads\/2021\/06\/gaming-desktop.jpg?width=1198&amp;trim=1,1&amp;bg-color=000&amp;pad=1,1\" alt=\"The inside of a desktop gaming PC case.\" width=\"1200\" height=\"675\" data-crediturl=\"https:\/\/www.shutterstock.com\/image-photo\/close-inside-high-performance-desktop-pc-1683050857\" data-credittext=\"FeelGoodLuck\/Shutterstock.com\" onload=\"pagespeed.lazyLoadImages.loadIfVisibleAndMaybeBeacon(this);\" onerror=\"this.onerror=null;pagespeed.lazyLoadImages.loadIfVisibleAndMaybeBeacon(this);\"\/><figcaption class=\"wp-caption-text\"><span class=\"type:primaryImage imagecredit\"><a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.shutterstock.com\/image-photo\/close-inside-high-performance-desktop-pc-1683050857\">FeelGoodLuck\/Shutterstock.com<\/a><\/span><\/figcaption><\/figure>\n<p>Windows 11 requires a PC with TPM 2.0. So does your PC have TPM 2.0, TPM 1.2, or none of the above? Did your PC come with TPM disabled in its BIOS? Do you need to buy a TPM hardware module? And why does Windows even need a TPM in the first place?<\/p>\n<h2 role=\"heading\" aria-level=\"2\"><span class=\"ez-toc-section\" id=\"What_Is_a_TPM\"><\/span>What Is a TPM?<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>TPM stands for \u201cTrusted Platform Module.\u201d It\u2019s a <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/technology\/\" data-internallinksmanager029f6b8e52c=\"4\" title=\"Technology\" target=\"_blank\" rel=\"noopener\">technology<\/a> that provides security-related functions at the hardware level. It generates and stores encryption keys and performs functions in a tamper-resistant manner. It provides additional protection against malware and other types of attacks.<\/p>\n<p>In a <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/click.linksynergy.com\/deeplink?id=2QzUaswX1as&amp;mid=24542&amp;u1=htg\/738163&amp;murl=https%3A%2F%2Fwww.microsoft.com%2Fsecurity%2Fblog%2F2021%2F06%2F25%2Fwindows-11-enables-security-by-design-from-the-chip-to-the-cloud%2F\">blog post<\/a>, Microsoft explains that Windows 11 systems will all have \u201ca hardware root-of-trust.\u201d The TPM is a tamper-resistant element at the core of the computer that can be used for security features like disk encryption and secure biometric sign-ins with Windows Hello.<\/p>\n<p>TPM \u201cattestation\u201d can be used to remotely authenticate hardware and software. The TPM has a unique endorsement key (EK) burned into the hardware. Organizations can remotely check and verify that a device is what it says it is and that the hardware and software haven\u2019t been tampered with. For example, this might be particularly useful for a company managing a fleet of work laptops.<\/p>\n<p>The TPM includes a hardware random number generator\u00a0that the system can depend on, too. Modern smartphones have security chips that perform specialized functions, so why shouldn\u2019t computers?<\/p>\n<h2 role=\"heading\" aria-level=\"2\"><span class=\"ez-toc-section\" id=\"Why_Does_Windows_11_Need_It\"><\/span>Why Does Windows 11 Need It?<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Here\u2019s one example: BitLocker encryption can store encryption keys in the TPM to protect your files. When your computer boots, the key stored in the TPM is used to unlock your drive. If an attacker yanks your system drive and inserts it into another computer, the attacker can\u2019t decrypt it and access your files without the keys stored in the TPM. The TPM is tamper-resistant, so an attacker can\u2019t just plug it into another computer or easily extract the decryption key from it.<\/p>\n<p>Even on Windows 10, BitLocker normally won\u2019t work without a TPM. If all Windows 11 PCs have a TPM, then all Windows 11 PCs can natively support Device Encryption. That\u2019s a lot better than the situation with some Windows 10 PCs coming with disk encryption while others don\u2019t include encryption.<\/p>\n<p>A TPM will give each Windows 11 system a baseline of hardware security for Microsoft to build on top of. Windows 11 can always assume that it has this baseline of hardware security. Microsoft won\u2019t have to build software-based hacks on top of Windows 11 or leave important functionality like disk encryption disabled on many PCs.<\/p>\n<p><strong>RELATED:<\/strong> <strong><em>Windows 11: What&#8217;s New In Microsoft&#8217;s New OS<\/em><\/strong><\/p>\n<h2 role=\"heading\" aria-level=\"2\"><span class=\"ez-toc-section\" id=\"Why_Isnt_TPM_12_Good_Enough\"><\/span>Why Isn\u2019t TPM 1.2 Good Enough?<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Microsoft\u2019s messaging was all over the place in the days after Windows 11\u2019s announcement. Initially, Microsoft\u2019s <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/docs.microsoft.com\/en-us\/windows\/compatibility\/windows-11\/\">Windows 11 compatibility page<\/a> said that some systems with TPM 1.2 would be able to upgrade. Later, Microsoft edited that page and said that TPM 2.0 would be required.<\/p>\n<p>A <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/docs.microsoft.com\/en-us\/windows\/security\/information-protection\/tpm\/tpm-recommendations#why-tpm-20\">Microsoft web page<\/a> dating to 2018 points out a variety of security advantages that TPM 2.0 has over TPM 1.2, including support for more modern cryptographic algorithms. Since TPM 2.0 has these advantages and has been common for several years now, Microsoft clearly feels that it makes sense to require TPM 2.0.<\/p>\n<h2 role=\"heading\" aria-level=\"2\"><span class=\"ez-toc-section\" id=\"Microsoft_Has_Required_a_TPM_on_Some_New_PCs_Since_2016\"><\/span>Microsoft Has Required a TPM on Some New PCs Since 2016<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<figure style=\"width: 650px\" class=\"wp-caption alignnone\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-738185 size-full\" src=\"https:\/\/www.howtogeek.com\/wp-content\/uploads\/2021\/06\/all-your-favorite-brands.png?trim=1,1&amp;bg-color=000&amp;pad=1,1\" alt=\"The &quot;All your favorite brands&quot; slide from Windows 11's announcement.\" width=\"650\" height=\"362\" data-credittext=\"Microsoft\" onload=\"pagespeed.lazyLoadImages.loadIfVisibleAndMaybeBeacon(this);\" onerror=\"this.onerror=null;pagespeed.lazyLoadImages.loadIfVisibleAndMaybeBeacon(this);\"\/><figcaption class=\"wp-caption-text\"><span class=\"imagecredit\">Microsoft<\/span><\/figcaption><\/figure>\n<p>Microsoft has required TPM 2.0 on Windows 10 PCs for several years\u2014kind of.<\/p>\n<p><a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/docs.microsoft.com\/en-us\/windows\/security\/information-protection\/tpm\/tpm-recommendations#tpm-20-compliance-for-windows-10\">Since July 28, 2016<\/a>, all new Windows PCs being manufactured have required TPM 2.0 to be enabled by default. If you\u2019re buying a laptop, desktop, 2-in-1, or any other device that comes with Windows 10 preinstalled, Microsoft requires that the manufacturer include TPM 2.0 and have it enabled.<\/p>\n<p>However, this is a requirement for the computer manufacturer to license and ship Windows on a PC. If you were building your own computer, you could have purchased a motherboard without TPM hardware and installed Windows 10 on it. Or, your motherboard manufacturer might have shipped the hardware with the TPM disabled.<\/p>\n<p>Windows 10 would have functioned h<a href=\"https:\/\/buradabiliyorum.com\/en\/category\/download-scripts-themes-apps\/\" data-internallinksmanager029f6b8e52c=\"9\" title=\"Download Scripts &amp; Themes &amp; Apps\" target=\"_blank\" rel=\"noopener\">app<\/a>ily without a TPM, whereas Windows 11 will refuse to install on such a system.<\/p>\n<h2 role=\"heading\" aria-level=\"2\"><span class=\"ez-toc-section\" id=\"Does_Your_PC_Have_a_TPM_Is_It_Disabled\"><\/span>Does Your PC Have a TPM? Is It Disabled?<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>If you\u2019ve purchased a PC that came with Windows 10 in 2016 or later, there\u2019s a good chance that it has TPM 2.0 already enabled\u2014unless that model was originally made before the cutoff date.<\/p>\n<p>If your PC is older than that, it might or might not have the TPM that Windows 11 requires. Many PCs have updated from Windows 7 to Windows 10, and those PCs will likely be left behind by this requirement.<\/p>\n<p>However, people who built their own PCs\u2014a crowd that includes a lot of PC <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/game\/\" data-internallinksmanager029f6b8e52c=\"7\" title=\"Game\" target=\"_blank\" rel=\"noopener\">game<\/a>rs\u2014might be in a strange situation. If you built your own PC (or purchased it from a company that built it for you), your PC might or might not have TPM 2.0. Even if Windows says that TPM 2.0 isn\u2019t present, it could just be disabled by default, and you might need to enable it in your computer\u2019s BIOS.<\/p>\n<p>To find out, you might need to visit your computer\u2019s BIOS (technically, now a UEFI firmware settings screen on modern computers, but often still called the BIOS) and look for an option named \u201cTPM,\u201d or something similar that enables this feature.<\/p>\n<p>Some computers have a firmware-based TPM. Intel calls this feature iPPT (Intel Platform Protection Technology), while AMD calls it fTPM (Firmware Trusted Platform Module). You might need to find an option called something like this in your BIOS\/UEFI settings screen. It could be called something else, too\u2014consult your motherboard\u2019s manual for more information.<\/p>\n<p>There\u2019s a good chance that many people with newer PCs will be able to enable TPM 2.0 in the BIOS without purchasing a separate TPM hardware module\u2014a component that <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.reviewgeek.com\/90224\/windows-11-requires-tpm-2-0-modules-so-scalpers-are-driving-up-prices\/\">scalpers are already buying up<\/a>. However, some gaming motherboards haven\u2019t included this feature and it might not be available. Prior to Microsoft\u2019s announcement, this would be required for Windows 11, but this wasn\u2019t necessarily considered a must-have feature for people building their own PCs.<\/p>\n<p><strong>RELATED:<\/strong> <strong><em>What Does a PC&#8217;s BIOS Do, and When Should I Use It?<\/em><\/strong><\/p>\n<h2 role=\"heading\" aria-level=\"2\"><span class=\"ez-toc-section\" id=\"Microsoft_Made_the_Situation_a_Confusing_Mess\"><\/span>Microsoft Made the Situation a Confusing Mess<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>The requirement to have TPM 2.0 as a hardware security baseline that Microsoft can design around makes sense. Remember that Microsoft will continue supporting Windows 10 until October 14, 2025,\u00a0so you can keep using your current computer and operating system for years to come.<\/p>\n<p>The real problem, once again, is Microsoft\u2019s poor communication. For example, if Microsoft had warned people that a TPM 2.0 would one day be required, motherboard manufacturers likely wouldn\u2019t have skimped on adding it to gaming boards. PC enthusiasts would have ensured that their builds had a TPM. Hardware manufacturers could have enabled it by default rather than disabling it by default. Microsoft might say that it sent this signal to its hardware partners, but many motherboard manufacturers clearly didn\u2019t get the message.<\/p>\n<p>Windows 11\u2019s announcement was also a mess: Microsoft initially said that TPM 1.2 would be partially supported and then changed its mind. Microsoft didn\u2019t even bother trying to explain why TPM was required at first. After Microsoft tried to build hype for the upgrade, the official\u00a0PC Health Check tool mysteriously failed without telling people <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.reviewgeek.com\/90256\/microsofts-windows-11-compatibility-tool-will-now-say-why-your-pc-cant-upgrade\/\">why their PC wasn\u2019t supported<\/a>.<\/p>\n<p>Microsoft could also have explained the situation and provided information on enabling TPM 2.0 in your computer\u2019s BIOS\u2014but the company didn\u2019t do any of that.<\/p>\n<\/div>\n<p><script>\n setTimeout(function(){\n  !function(f,b,e,v,n,t,s)\n  {if(f.fbq)return;n=f.fbq=function(){n.callMethod?\n  n.callMethod.apply(n,arguments):n.queue.push(arguments)};\n  if(!f._fbq)f._fbq=n;n.push=n;n.loaded=!0;n.version='2.0';\n  n.queue=[];t=b.createElement(e);t.async=!0;\n  t.src=v;s=b.getElementsByTagName(e)[0];\n  s.parentNode.insertBefore(t,s) } (window, document,'script',\n  'https:\/\/connect.facebook.net\/en_US\/fbevents.js');\n   fbq('init', '335401813750447');\n   fbq('track', 'PageView');\n  },3000);\n<\/script><\/p>\n<blockquote><p><strong><span style=\"color: #ff6600;\">If you liked the article, do not forget to share it with your friends. Follow us on\u00a0<span style=\"color: #ff0000;\"><a style=\"color: #ff0000;\" href=\"https:\/\/news.google.com\/publications\/CAAqBwgKMLG0nwswvr63Aw\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">Google News<\/a><\/span>\u00a0too, click on the star and choose us from your favorites.<\/span><\/strong><\/p><\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\">For forums sites go to <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/forum.buradabiliyorum.com\/\" target=\"_blank\" rel=\"noopener\">Forum.BuradaBiliyorum.Com<\/a><\/span><\/strong><\/p>\n<\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\"><strong>If you want to read more like this article, you can visit our <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/en.buradabiliyorum.com\/technology\/\" target=\"_blank\" rel=\"noopener\">Technology category.<\/a><\/span><\/strong><\/p>\n<\/blockquote>\n<p><span style=\"color: black;\"><a style=\"color: #ff9900;\" href=\"https:\/\/www.howtogeek.com\/738163\/why-does-windows-11-need-tpm-2.0\/\" target=\"_blank\" rel=\"noopener\">Source<\/a><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>&#8220;#Why Does Windows 11 Need TPM 2.0?&#8221; FeelGoodLuck\/Shutterstock.com Windows 11 requires a PC with TPM 2.0. So does your PC have TPM 2.0, TPM 1.2, or none of the above? Did your PC come with TPM disabled in its BIOS? Do you need to buy a TPM hardware module? And why does Windows even need&#8230;<\/p>\n","protected":false},"author":1,"featured_media":287413,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/www.howtogeek.com\/wp-content\/uploads\/2021\/06\/gaming-desktop.jpg?height=200p&trim=2,2,2,2","fifu_image_alt":"","footnotes":""},"categories":[18],"tags":[],"class_list":["post-287412","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technology"],"_links":{"self":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/287412","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/comments?post=287412"}],"version-history":[{"count":0,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/287412\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media\/287413"}],"wp:attachment":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media?parent=287412"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/categories?post=287412"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/tags?post=287412"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}