TPM
Trusted Platform Module
ELI5 — The Vibe Check
TPM is the security chip on your computer's motherboard that stores encryption keys and verifies boot integrity. It's why Windows 11 requires TPM 2.0 — Microsoft wants hardware-level security guarantees. It's like having a tiny security guard permanently installed in your computer who checks that nothing was tampered with every time you power on.
Real Talk
TPM (Trusted Platform Module) is a hardware chip or firmware implementation providing secure cryptographic operations, key storage, and platform integrity verification. TPM 2.0 (ISO/IEC 11889) supports key sealing, remote attestation, and measured boot. It's used by BitLocker, Windows Hello, and Secure Boot to provide hardware-based security guarantees.
When You'll Hear This
"Windows 11 won't install without TPM 2.0 — it's a hard requirement." / "TPM attestation proves the server booted with an unmodified OS."
Related Terms
Encryption
Encryption is scrambling your message into gibberish so only someone with the secret decoder ring can read it.
HSM (Hardware Security Module)
HSM stands for Hardware Security Module — a tamper-proof physical device that manages cryptographic keys. If someone tries to open it, the keys self-destru
Secure Boot
Secure Boot verifies that every piece of software that loads during startup is signed and trusted. Bootloader? Signed. Kernel? Signed. Drivers? Signed. If
Secure Enclave
A Secure Enclave is a tiny, isolated computer inside your computer that handles the most sensitive stuff — biometric data, encryption keys, payment info.
Trusted Platform Module (TPM)
A TPM is a security chip on your motherboard that stores encryption keys, certificates, and passwords in tamper-resistant hardware. It verifies that your c