Trusted Platform Module (TPM) 2.0

Trusted Platform Module (TPM) 2.0

Trusted Platform Module (TPM) 2.0 is a hardware-based security solution designed to enhance the protection of sensitive data and secure devices from unauthorized access. It is a cryptographic module that provides a secure environment for storing
cryptographic keys, passwords, and certificates. TPM 2.0 is widely implemented in modern computers and is a key requirement for Windows 11.

Key Features

Cryptographic Functions:

Provides hardware-based random number generation.
Supports encryption, decryption, signing, and key management.

Secure Storage:

Stores cryptographic keys, passwords, and certificates securely, protecting them from external attacks.

Platform Integrity:

Measures and verifies the integrity of the system during boot-up, preventing unauthorized changes to the firmware or operating system.

Authentication:

Enhances authentication processes by securely storing credentials, enabling secure biometric and PIN-based logins.

Hardware Security:

Operates in isolation from the main CPU and operating system, providing robust security even if the system is compromised. Support for Modern Cryptographic Algorithms that includes support for SHA-256, RSA, ECC, and other advanced algorithms.

How to Check for TPM 2.0?

On Windows, run tpm.msc in the Run dialog to check the status and version of TPM on your device.

 

Microsoft requires TPM 2.0 for Windows 11 to ensure enhanced security and compatibility with modern cybersecurity standards.
It enables features like Secure Boot, Windows Hello, and device encryption, which are critical for safeguarding personal and enterprise data.

If your device lacks TPM 2.0, you might need to enable it in the BIOS/UEFI settings or upgrade your hardware.