Questions about TPM (Trusted Platform Module)

December 4, 2016 at 16:01:35
Specs: several
On a new HP laptop running Windows 10 for personal use.

What functions does a TPM provide that I would be likely to
need, want, or encounter?

Can a TPM which has been turned off in the BIOS be turned on
by the operating system?

According to a Microsoft web page, a TPM has to be initialized
before it can be used. It appears to me that it wouldn't make
any sense at all to initialize it at the factory (or for the seller to
initialize it), which means it must be initialized after the user gets
ahold of the computer. Since I haven't seen anything in Windows
as yet about initializing the TPM, I'm guessing that initializing a
TPM is not something most computer users do, and therefore,
using a TPM is not something most computer users do.

Are those guesses correct?

If so, it sounds like most users could disable the TPM in BIOS
with no loss of normal functionality. Is that correct?

-- Jeff, in Minneapolis

message edited by Jeff Root


See More: Questions about TPM (Trusted Platform Module)

Reply ↓  Report •


#1
December 5, 2016 at 03:15:00
Lengthy explanation of what a TPM is used for:

https://www.cryptomathic.com/news-e...

If a PC has a TPM, you disable or enable it in the "Security" section of the BIOS configuration (BIOS Setup).

message edited by phil22


Reply ↓  Report •

#2
December 5, 2016 at 09:08:43
One reason you'd need to enable the TPM is if you're installing BitLocker on the system.

Newer systems may come with a TPM 2.0 chip. It all depends on the model.

message edited by beachyhbt


Reply ↓  Report •

#3
December 5, 2016 at 11:33:54
Thanks. The article is rather jargony, and the intended
audience isn't apparent, so much of it went over my head,
but it isn't *that* long, and I got at least some of the gist.

Is there an easy way to determine a TPM's version without
initializing it?

-- Jeff, in Minneapolis


Reply ↓  Report •

Related Solutions

#4
December 6, 2016 at 09:34:50
Jeff, boot to the BIOS and go to the Security section. I've seen three options for TPM, TPM, TPM 1.2, and TPM 2.

Reply ↓  Report •

#5
December 6, 2016 at 12:39:38
There are no such options in my BIOS. There is an option
to make the TPM either Hidden or Available. If it is set to
Available, then two other options appear: one to enable or
disable the TPM, and one to clear or not to clear the TPM
at next system start. The Item Specific Help explains the
difference between the clearing processes for TPM 1.2
and TPM 2.0, implying that it could be either one.

-- Jeff, in Minneapolis


Reply ↓  Report •

#6
December 8, 2016 at 04:59:35
If you want to enable it, then set to Available and enable. :)

Reply ↓  Report •


Ask Question