Microsoft made TPM 2.0 a requirement to raise the baseline security of Windows PCs, especially against credential theft, ransomware, and firmware attacks.
>>109254690I have it turned off, I trust my platform
i agree
>>109254690>especially against credential theft, ransomware, and firmware attackshow exactly does it help against that?
>>109254690Did it achieve any greater security, though?
>>109254720A TPM helps by keeping cryptographic secrets (such as encryption keys, Windows Hello credentials, and other authentication material) inside a tamper-resistant chip instead of leaving them accessible on the hard drive or in software. This means that if malware, ransomware, or someone with physical access to your computer tries to steal those secrets, extracting them is much more difficult. It also works with Secure Boot and measured boot to verify that the firmware and boot process haven't been altered before releasing sensitive keys. As a result, even if an attacker copies your drive or tampers with the startup process, they are much less likely to decrypt your data or impersonate you without also compromising the trusted hardware.>>109254723Yes. TPM has significantly improved security against specific types of attacks, especially theft of encrypted data, credential extraction, and boot-level tampering, by keeping cryptographic keys in dedicated hardware and verifying the integrity of the startup process before releasing them. However, it does not stop phishing, software vulnerabilities, malware running after login, or most ransomware attacks, so while it has raised the baseline security of modern PCs and made some attacks much harder, it is only one layer of a broader security strategy.
>>109254728This reads like an LLM.
>>109254733You don't need to be a homosexual about it. Keep your homosexuality out of this thread.
>>109254690No it’s to track you since you need to install the latest and greatest OS to play your vidya! https://www.windowslatest.com/2026/07/10/you-cant-fully-disable-microsofts-gdid-windows-11-tracker-but-these-settings-limit-what-it-captures/
>>109254690Windows used to mean freedom and ease of use. We are absolutely at the crossroads where Winslop is a mere shadow of what it was, it is no longer easy to use, it is a nightmare, it is dangerous to use. It is safer and more straight forward today to just use Kubuntu, and it games better than microscop, looks better, uses less resources, no AI, I am done
>>109254824Do you really believe you have a way to escape them in Q3'2k26?Do you really believe that some distro will save you at this point?
>>109254690no it's for GDID to fingerprint your computer and spy on you
>>109254831>yeah, let's use garbage instead
>>109254831>Windows used to mean freedom and ease of useLiterally when
>>109254836Don't be naive: >>109254832There is no such thing as privacy.
A 40 head NPU requirement will mean only a few machines from late 2024 will be able to run Windows 12.
>>109254839Windows 10 was fantastic, lots of FPS, my GTA V loved it on my shitty hardware back in the day, only reason i switched to Win11 was due to ultrawide screen tiling, but i dont even use it, so there was no point in switching>>109254838i dont care about your retarded opinion, you havent used it, so sit down and shut up, spin up vm and check it out retard, literally like mac
>>109254824>windowslatestHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAOh wait you're serious let me laugh even harderHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAFor those of you not in the know it's the approximate equivalent of those "black history revealed" accounts on XitterCompletely made up and no connection to reality
>>109254728>windows hello>muh secure boot>muh credentialsBig news for people who struggle to send an email unassisted
>>109254690>takes over all your computers using your old minecraft account anyway
>>109254723Kek they do this nonsense and Windows users still get pwned, meanwhile a piece of shit old computer with Linux doesn't even deal with this, it also runs faster because Linux isn't a bloated pig, even the horrible bloated Ubuntu idles at 1.5GB of RAM, you step it down to Linux Mint Cinnamon, it's 1GB, step down once again to XFCE and it's 650-700MB
>>109254690The most retarded part is even if you put this shit module into your motherboard with i7-7700K, the official unmodified windows installer will still say you have an unsupported cpu and you should go fuck yourself. Just install linux and avoid bullshit.
>>109254728>A TPM helps by keeping cryptographic secrets (such as encryption keys, Windows Hello credentials, and other authentication material) inside a tamper-resistant chip instead of leaving them accessible on the hard drive or in softwareHow is it more secure than just keeping all that inside of encrypted partition?
>>109254855>ultrawide screen tilingyou could do it using microsoft powertoys on windows 10 assuming you have 2 hands.
>>109255846This is what happened to me. I just wanted to try out a game with gamepass and i specifically told windows to not use my xbox app credentials system wide, next day it turns out microsoft already stole my documents folder and saved it to onedrive.
I don't use anything that requires TPM 2.0, and will not use anything that uses TPM 2.0.
>>109255992I had this in mindhttps://www.youtube.com/watch/?v=U1qF5PtXVKE
>>109254690Trusted computing is basically corpos not trusting you and what you are doing with your machine, so they forced their spyware module in your machine.Why would you want that?> a requirementIt is not, I have personally installed and used win 11 on a machine that phisically does not have a TPM (any version of it) and secure boot being disabled as well and no online microslop account and so on.There is no such requirement, it's a bunch of flags in the software that do not influence absolutely anything you may want.Like, nobody uses microsoft storage encryption that is backdoored both officially and unofficially. There are some other gimmicks, but I forgot what they are. Those actually require spyware modules and such. But you probably don't need them.
>>109254855>Windows 10 was fantasticIf you exclusively use LTSC, sure. Let's not pretend that Nutella fired the entire QA staff because he cares about Windows.
>>109254690the one and only reason for TPM is remote attestation and de-anonymization. it has fuck all to do with security. they want to force and normalize it, so you can't even get on the internet without identifying your device. this, combined with forced age-verification that will soon be forced in every commercially offered OS, is just to increase online surveillance.
>>109254720It doesn't. It's just a quicker backdoor for the police/government to access your data should they need it.
>>109256068Nobody fucking cares about spying on a tiny handful of basedlennials and their desktops lmao. Majority of people only use phones, and what remains mostly buy laptops and use whatever’s already installed (which is win11).
>>109256146every single phone has an equivalent of a TPM chip already in it, so this is not even worth discussing anymore. desktops are what is still left to backdoor, so they are going after them now.
>>109254728Secure boot in theory is not a bad thing, sadly the current widely used tpm is an NSA backdoor and it is more or less required to run latest windows.
>>109256230Secure boot doesn't even have anything to do with TPM.
>>109256230"Secure" boot is a misnomer. Just because there's cryptographic proof that the computer is running the same thing doesn't mean the thing is not buggy and not malicious. Remember when png decoder of boot splash would just run the file instead? Very secure.
This thread is a good reminder than nu g knows nothing of value whatsoever
>>109254728This doesn't actually explain anything. Do better next time ChatGPT.>>109254831>Windows used to mean freedom and ease of use.Hello zoomer. That was never true btw. Maybe with Win95. Sort of.
>>109254690Yeah the problem is on Microsoft not TPM.
>Security on backdoored OSlol lmao
>>109254690It's a LPC (basically fucking ISA emulation over SPI for low bandwigth data), how hard would it be to make your own out of an RP2040?
>>109254690Their IoT Enterprise version doesn't require a TPM or UEFi or secure boot. That ISO also contains the regular enterprise and depending on which edition you choose, lets you install it ro blocks it. It's a fucking joke.
>>109258332you could probably make your own, but why would you? spoofing contents won't do you any good to trick remote attestation.
>>109254733Any post longer than two lines is AI generated and should thus just be ignored.
>>109258419No, but at least you know things are correctly encrypted without backdoors.
>>109254855>opinionLOL! What a dumb idiot you are.
>>109254703fpbp
>>109254728unfortunately many of these claims are not true, as TPM traffic is not encrypted on most devices, and many modules are compromised or vulnerable to attacks. tpm sniffers are like $20 secureboot as it is implemented with standard windows is completely defeated, more like a minor annoyance to bypass. Keys that are compromised shipped with many pcs, and will not be revoked, so anybody can sign their own stuff and have it look legit. These work ok against really simple malware and viruses, but they will not defeat a proper attack whatsoever.
>>109254690No, it was done so they could DRM-lock software to the purchaser's unique machine.
>>109254690How well do popular Linux distros like Fedora, Mint, and CachyOS do in security overall compared to Wins?
>>109254703>trustHERESY AGAINST MY SECURITY PAGAN IDOL
>>109254733One of those L's stands for language. This might come as a surprise but AI is trained off of human written text, and get this, they make it a point to look like human written text in their output. Isn't that wild!
>Microsoft announces TPM requirements>Have older CPU and motherboard>Documentation says almost nothing about it>Look at the TPM pins on the motherboard to figure out what module I probably need>Everywhere sold out>Finally found somewhere taking backorders for $13 but with $25 international shipping>Am retard and the module I ordered has a mirrored pin layout than what I needed so it doesn't even fit>Flipped it on eBay for $75>Bypassed the Windows 11 install anyways
>>109255958While I am not a fan of TPM chips, I do see the logic. How is keeping stuff in a safe bolted to the floor more secure than keeping it in a cashbox that anyone can pickup and carry away? If I can easily copy your encrypted partition (which is not a problem) I can walk off with your data and crack it at my leisure. I don't even need to be in front of the machine. Remote access and enough time to clone the partition is all I would need. A TPM is 'harder' to crack in that I have to have access to it the entire time I am trying to break into your stuff. That requires either more remote access time or physical possession of the machine. Harder, is of course, not impossible.It is nice that it is a thing that 'just works'. I don't have to deal with some CEO with his head so far up his own ass he thinks everyone else would enjoy being up their too. It comes with the machine and I don't have to deal with resetting yet another one of his passwords he has forgotten or replacing yet another lost MFA dongle. It is mostly user-proof.That said, it is also not a moving target. If your encryption method had a flaw that became exploitable, you could decrypt your data and then re-encrypt it using a different method. If someone cracks the TPM it is basically useless. Game over.
>>109254690TPM is great for simplifying disk encryption. Both on Windows and GNU/Linux users can easily encrypt their drive without having to enter their passphrase at every boot. Even though its not as secure as requiring a passphrase, its way better than having unencrypted drives, especially on laptops.
>>109254690The patent for Insulin was sold for a dollar by the inventor to make it affordable to everyone. Current monthly insulin cost is like 1000 dollars
>>109261023>TPM is greatreally? it sounds like TPM is a disaster that will leave all your files forever locked unrecoverable, like it will marry the disks to the motherboard forever etc. plsu its easily accessible, no more windows for me
>>109255908linux users don't have any money
>>109261113Just make sure you have your recovery key stored somewhere safe.
>>109254703fippy bippy. Imagine actually trusting Microshart for anything security related.
>Don't have TPM module>Physically can't downgrade to Jeetdows 11>Don't play games that use it anyway
>>109254728Reminder that everything your computer processes exists temporarily in its raw state within your RAM. It doesn’t matter where it’s stored or how it’s encrypted, it’s going to get read and loaded to memory and transferred to the CPU at some point, which makes it vulnerable.