|
Off Topic Off Topic - General non-Corvette related discussion. |
|
Share | Thread Tools | Search this Thread |
06-28-2021, 8:14am | #1 | ||||||
Chief Meat Gazer
Charter Member Barn Stall Owner #98 Barn Raising II,III,IV
Join Date: Oct 2009
Location: Ohio
Posts: 51,042
Thanks: 23,455
Thanked 33,863 Times in 12,341 Posts
Gameroom Barn Bucks: $5135124
|
Windows 11 is forcing everyone to use TPM chips
Microsoft announced yesterday that Windows 11 will require TPM (Trusted Platform Module) chips on existing and new devices. It’s a significant hardware change that has been years in the making, but Microsoft’s messy way of communicating this has left many confused about whether their hardware is compatible. What is a TPM, and why do you need one for Windows 11 anyway?
“The Trusted Platform Modules (TPM) is a chip that is either integrated into your PC’s motherboard or added separately into the CPU,” explains David Weston, director of enterprise and OS security at Microsoft. “Its purpose is to protect encryption keys, user credentials, and other sensitive data behind a hardware barrier so that malware and attackers can’t access or tamper with that data.” So it’s all about security. TPMs work by offering hardware-level protection instead of software only. It can be used to encrypt disks using Windows features like BitLocker, or to prevent dictionary attacks against passwords. TPM 1.2 chips have existed since 2011, but they’ve typically only been used widely in IT-managed business laptops and desktops. Microsoft wants to bring that same level of protection to everyone using Windows, even if it’s not always perfect. Microsoft has been warning for months that firmware attacks are on the rise. “Our own Security Signals report found that 83 percent of businesses experienced a firmware attack, and only 29 percent are allocating resources to protect this critical layer,” says Weston. That 83 percent figure seems huge, but when you consider the various phishing, ransomware, supply chain, and IoT vulnerabilities that exist, the broad range of attacks becomes a lot clearer. Ransomware attacks hit the headlines weekly, and ransomware funds more ransomware so it’s a difficult problem to solve. TPMs will certainly help with certain attacks, but Microsoft is banking on a combination of modern CPUs, Secure Boot, and its set of virtualization protections to really make a dent in ransomware. Microsoft is trying to play its part, particularly as Windows is the platform that’s often most affected by these attacks. It’s widely used by businesses worldwide, and there are more than 1.3 billion Windows 10 machines in use today. Microsoft software has been at the core of devastating attacks that made global headlines, like the Russia-linked SolarWinds hack and the Hafnium hacks on Microsoft Exchange Server. And while the company isn’t responsible for forcing its clients to keep its software patched, it’s trying to be more proactive about protection. Microsoft has a habit of struggling to move Windows into the future in both hardware and software, and this particular change hasn’t been explained well. While Microsoft has required OEMs to ship devices with support for TPM chips since Windows 10, the company hasn’t forced users or its many device partners to turn these on for Windows to work. That’s what’s really changing with Windows 11, and combined with Microsoft’s Windows 11 upgrade checker, it has resulted in a lot of understandable confusion. Microsoft’s Windows 11 website lists the minimum system requirements, with a link to compatible CPUs and a clear mention that a TPM 2.0 is required at a minimum. The PC Health Check app that Microsoft asks people to download and check to see if Windows 11 runs will flag systems that do not have Secure Boot or TPM support enabled or devices that have CPUs that aren’t officially supported (anything older than 8th Gen Intel chips). That’s left many trying to figure out if their device supports TPM or not, confusion with BIOS settings, and even people rushing to buy separate TPM modules they don’t need. Some are even scalping TPM 2.0 modules on eBay! It also didn’t help that Microsoft originally had a second webpage with contradictory information, one which it changed a couple hours after we published this story. According to the original version of the page, the true minimum requirements were TPM 1.2 and a 64-bit dual-core CPU that’s 1GHz or greater, but the new page now clarifies it requires TPM 2.0 and a processor that Microsoft has explicitly certified as compatible — which might mean everything before an 8th Gen Intel Core and AMD Ryzen 2000 won’t work. We’re still waiting for explicit confirmation from Microsoft on the CPU requirement, but a rep confirms that TPM 2.0 will be mandatory, and that the original information on that page was wrong. “The referenced docs page was a mistake that has since been corrected,” an MS rep tells The Verge. Microsoft is promoting TPM 2.0 and performing checks for 8th Gen or newer Intel chips because these are the requirements for certified OEM hardware — the machines you’ll find in stores with an inevitable Windows 11 sticker. But it’s no longer clear whether the Windows 11 update will work on older machines either, and Microsoft is suggesting to us that it won’t. We understand Microsoft is currently putting together a blog post that will explain the minimum requirements in more detail. But that doesn’t mean your existing PC is out of luck just because you’re having issues with Microsoft’s compatibility tool. Unless your CPU is very old, it probably already has baked-in TPM 2.0 support. If you’re having issues with the PC Health App checker for Windows 11, make sure you have “PTT” on Intel systems enabled in the BIOS, or “PSP fTPM” on AMD devices. The company’s system checker should also be less confusing now: shortly after we published this story, Weston tweeted that the tool will now be more specific about why your PC isn’t passing muster. |
||||||
The Following 3 Users Say Thank You to Mike Mercury For This Useful Post: |
06-28-2021, 9:00am | #2 | ||||||
Chief Meat Gazer
Charter Member Barn Stall Owner #98 Barn Raising II,III,IV
Join Date: Oct 2009
Location: Ohio
Posts: 51,042
Thanks: 23,455
Thanked 33,863 Times in 12,341 Posts
Gameroom Barn Bucks: $5135124
|
|
||||||
06-28-2021, 9:37am | #3 | ||||||
Barn Stall Owner #1120
NCM Supporter '20,'21
Join Date: Jan 2016
Location: La Isla de Ira
Posts: 17,534
Thanks: 3,845
Thanked 18,577 Times in 8,210 Posts
Gameroom Barn Bucks: $1030760
|
This is a good thing - malware is getting totally out of control these days. The only problem is the computers that run our power plants, water facilities, fuel pipelines, and other critical infrastructure are mostly older machines running older versions of Windows and won't benefit from this protection until somebody pays for the upgrades.
|
||||||
06-28-2021, 9:56am | #4 | |||||||
A Real Barner
Join Date: Apr 2019
Location: North Carolina
Posts: 17,299
Thanks: 4,936
Thanked 23,945 Times in 9,942 Posts
Gameroom Barn Bucks: $315482
|
Quote:
Critical systems need to be kept Isolated and either standalone or behind some serious security although any system can be compromised if they can get to it. My FIL has paid 2 or 3 times because of malware locked his shit up. Dumbass. |
|||||||
The Following User Says Thank You to Rodnok1 For This Useful Post: |
06-28-2021, 10:05am | #5 | ||||||
A Real Barner
Join Date: Jan 2011
Location: Woodland, CA
Posts: 12,547
Thanks: 7,772
Thanked 5,600 Times in 1,991 Posts
Gameroom Barn Bucks: $1524159
|
You can download MS PC Health Check: https://aka.ms/GetPCHealthCheckApp
|
||||||
The Following User Says Thank You to Wathen1955 For This Useful Post: |
06-28-2021, 12:39pm | #6 | |
Explosive Salami
Stall Owner #1120.2520 Join Date: Feb 2010
Location: Not Ceasing & Desisting on the leeward side of Anger Island
Posts: 52,388
Thanks: 21,765
Thanked 27,971 Times in 11,824 Posts
Gameroom Barn Bucks: $9018209
|
Quote:
If you want more info, you can check out my TPS reports with the new cover sheet. |
|
The Following 5 Users Say Thank You to DJ_Critterus For This Useful Post: |
06-28-2021, 1:12pm | #7 | ||||||
Chief Meat Gazer
Charter Member Barn Stall Owner #98 Barn Raising II,III,IV
Join Date: Oct 2009
Location: Ohio
Posts: 51,042
Thanks: 23,455
Thanked 33,863 Times in 12,341 Posts
Gameroom Barn Bucks: $5135124
|
|
||||||
The Following 3 Users Say Thank You to Mike Mercury For This Useful Post: |
|
|
Support the Barn: |
Download the Mobile App; |
Follow us on Facebook: |
||