Trusted Platform Module ( TPM ) is an international standard for a secure cryptoprocessor , a dedicated microcontroller designed to secure hardware through integrated cryptographic keys. The term can also refer to a chip conforming to the standard ISO/IEC 11889. Common uses are to verify platform integrity (to verify that the boot process starts from a trusted combination of hardware and software), and to store disk encryption keys.
129-487: One of Windows 11 's operating system requirements is TPM 2.0 implementation. Microsoft has stated that this is to help increase security against firmware attacks. The bloat of functions was criticised, especially random number generation. Trusted Platform Module (TPM) was conceived by a computer industry consortium called Trusted Computing Group (TCG). It evolved into TPM Main Specification Version 1.2 which
258-524: A Microsoft account in order to complete first-time setup. This restriction is also applied to Windows 11 Pro since version 22H2 as it was announced in February 2022, although a Microsoft account isn't required if it's not for personal use. Windows 11 SE was announced on November 9, 2021, as an edition exclusively for low-end devices sold in the education market; it is intended as a successor to Windows 10 S , and also competes primarily with ChromeOS . It
387-504: A differential power analysis attack against TPMs that was able to extract secrets. Main Trusted Boot (tboot) distributions before November 2017 are affected by a dynamic root of trust for measurement (DRTM) attack CVE - 2017-16837 , which affects computers running on Intel's Trusted eXecution Technology (TXT) for the boot-up routine. In 2018, a design flaw in the TPM 2.0 specification for
516-447: A hard disk drive (HDD) for storage; since then, solid-state drives (SSD) have gradually come to supplant hard drives in all but some inexpensive consumer models. Solid-state drives are faster and more power-efficient, as well as eliminating the hazard of drive and data corruption caused by a laptop's physical impacts, as they use no mechanical parts such as a rotational platter. In many cases, they are more compact as well. Initially, in
645-457: A license key and USB flash drive ) were released on May 9, 2022, and digital licenses became available via Microsoft Store on July 28, 2022. On September 20, 2023, around two years after the release date of Windows 11, Microsoft announced that users would no longer be able to use Windows 7 or Windows 8/8.1 keys to activate Windows 10/11. However, as of 2024, there are some reports that they still work, under certain conditions. Windows 11,
774-416: A news aggregator with personalized stories and content (expanding upon the "news and interests" panel introduced in later builds of Windows 10). Microsoft Teams is similarly integrated with the taskbar, with a pop-up showing a list of recent conversations. The Start menu has been significantly redesigned, replacing the "live tiles" used by Windows 8.x and 10 with a grid of "pinned" applications, and
903-503: A root of trust : The TPM contains several Platform Configuration Registers (PCRs) that allow secure storage and reporting of security-relevant metrics. These metrics can be used to detect changes to previous configurations and decide how to proceed. Examples of such use can be found in Linux Unified Key Setup (LUKS), BitLocker and PrivateCore vCage memory encryption. (See below.) Another example of platform integrity via TPM
1032-417: A separate graphics processor were limited in their utility for gaming and professional applications involving 3D graphics, but the capabilities of CPU-integrated graphics have converged with the low-end of dedicated graphics processors since the mid-2010s. For laptops possessing limited onboard graphics capability but sufficient I/O throughput, an external GPU (eGPU) can provide additional graphics power at
1161-528: A "platform" is any computer device regardless of its operating system . This is to ensure that the boot process starts from a trusted combination of hardware and software, and continues until the operating system has fully booted and applications are running. When TPM is used, the firmware and the operating system are responsible for ensuring integrity. For example, the Unified Extensible Firmware Interface (UEFI) can use TPM to form
1290-854: A PC, either the Low Pin Count (LPC) bus or the Serial Peripheral Interface (SPI) bus is used to connect to the TPM chip. The Trusted Computing Group (TCG) has certified TPM chips manufactured by Infineon Technologies , Nuvoton , and STMicroelectronics , having assigned TPM vendor IDs to Advanced Micro Devices , Atmel , Broadcom , IBM , Infineon, Intel , Lenovo , National Semiconductor , Nationz Technologies, Nuvoton, Qualcomm , Rockchip , Standard Microsystems Corporation , STMicroelectronics, Samsung , Sinosun, Texas Instruments , and Winbond . There are five different types of TPM 2.0 implementations (listed in order from most to least secure): The official TCG reference implementation of
1419-423: A TPM for the authentication of hardware devices, since each TPM chip has a unique and secret Endorsement Key (EK) burned in as it is produced. Security embedded in hardware provides more protection than a software-only solution. Its use is restricted in some countries. The primary scope of TPM is to ensure the integrity of a platform during boot time. In this context, "integrity" means "behaves as intended", and
SECTION 10
#17328490451171548-414: A broad range of devices, which combined features of several previously separate device types. The hybrids , convertibles , and 2-in-1s emerged as crossover devices, which share traits of both tablets and laptops. All such devices have a touchscreen display designed to allow users to work in a tablet mode, using either multi-touch gestures or a stylus / digital pen . Convertibles are devices with
1677-534: A centered taskbar and updated Start menu without Windows 10's "live tiles". Legacy Windows applications would also be required to run in "containers" to ensure performance and power optimization. Microsoft stated that it planned to release Windows 10X devices by the end of 2020. In May 2020, during the COVID-19 pandemic , Panos Panay , Microsoft's chief product officer for Microsoft Windows and Microsoft Office , stated that "as we continue to put customers' needs at
1806-507: A core part of the talk. It argues that Nixon was referring to the fact that he could talk freely at the event because 10 was the last version in current development. In October 2019, Microsoft announced " Windows 10X ", a future edition of Windows 10 designed exclusively for dual-touchscreen devices such as the then-upcoming Surface Neo . It featured a modified user interface designed around context-sensitive "postures" for different screen configurations and usage scenarios, and changes such as
1935-511: A dedicated Windows media event at 11:00 a.m. ET on June 24, 2021. Microsoft also posted an 11-minute video of Windows start-up sounds to YouTube on June 10, 2021, with many people speculating both the time of the Microsoft event and the duration of the Windows start-up sound video to be a reference to the name of the operating system as Windows 11. On June 24, 2021, Windows 11
2064-458: A few high-end models intended for gaming do as well. As of 2021, 8 GB RAM is most common, with lower-end models occasionally having 4 GB. Higher-end laptops may come with 16 GB of RAM or more. The earliest laptops most often used floppy disk for storage, although a few used either RAM disk or tape, by the late 1980s hard disk drives had become the standard form of storage. Between 1990 and 2009, almost all laptops typically had
2193-405: A full-featured desktop OS like Windows 10 , and have a number of typical laptop I/O ports, such as USB 3 and Mini DisplayPort . 2-in-1s are designed to be used not only as a media consumption device but also as valid desktop or laptop replacements, due to their ability to run desktop applications, such as Adobe Photoshop . It is possible to connect multiple peripheral devices, such as
2322-429: A hardware keystroke logger , by resetting TPM, or by capturing memory contents and retrieving TPM-issued keys. The condemning text goes so far as to claim that TPM is entirely redundant. The VeraCrypt publisher has reproduced the original allegation with no changes other than replacing "TrueCrypt" with "VeraCrypt". The author is right that, after achieving either unrestricted physical access or administrative privileges, it
2451-592: A laptop and provide display output over one USB-C Cable. Most laptop displays have a maximum refresh rate of 60 Hz. The Dell M17x and Samsung 700G7A, both released in 2011, were among the first laptops to feature a 120 Hz refresh rate, and more such laptops have appeared in the years since. A laptop's CPU has advanced power-saving features and produces less heat than one intended purely for desktop use. Mainstream laptop CPUs made after 2018 have at least two processor cores, often four cores, and sometimes more, with 6 and 8 cores becoming more common. For
2580-657: A late-2021 feature update codenamed "Cobalt". Internal documentation stated that the aim for "Sun Valley" was to "reinvigorat[e]" the Windows user interface and make it more "fluid", with a more consistent application of WinUI , while reports suggested Microsoft planned to adapt UI elements seen in Windows 10X. In January 2021, it was reported that a job listing referring to a "sweeping visual rejuvenation of Windows" had been posted by Microsoft. By December 2020, Microsoft had begun to implement and announce some of these visual changes and other new features on Windows 10 Insider Preview builds, such as new system icons (which also included
2709-566: A list of recent applications and documents. File Explorer was updated to replace its ribbon toolbar with a more traditional toolbar , while its context menus have been redesigned to move some tasks (such as copy and paste) to a toolbar along the top of the menu, and hide other operations under an overflow menu. Task View , a feature introduced in Windows 10, features a refreshed design, and supports giving separate wallpapers to each virtual desktop . The window snapping functionality has been enhanced with two additional features; hovering over
SECTION 20
#17328490451172838-510: A mouse, keyboard, and several external displays to a modern 2-in-1. Microsoft Surface Pro-series devices and Surface Book are examples of modern 2-in-1 detachable, whereas Lenovo Yoga -series computers are a variant of 2-in-1 convertibles. While the older Surface RT and Surface 2 have the same chassis design as the Surface Pro, their use of ARM processors and Windows RT do not classify them as 2-in-1s, but as hybrid tablets. Similarly,
2967-742: A number of hybrid laptops run a mobile operating system , such as Android . These include Asus's Transformer Pad devices, examples of hybrids with a detachable keyboard design, which do not fall in the category of 2-in-1s. A rugged laptop is designed to reliably operate in harsh usage conditions such as strong vibrations, extreme temperatures, and wet or dusty environments. Rugged laptops are bulkier, heavier, and much more expensive than regular laptops, and thus are seldom seen in regular consumer use. The basic components of laptops function identically to their desktop counterparts. Traditionally they were miniaturized and adapted to mobile use, The design restrictions on power, size, and cooling of laptops limit
3096-493: A redesigned out-of-box experience (OOBE) and Windows 11 branding. Microsoft would later confirm the authenticity of the leaked beta, with Panay stating that it was an "early weird build". At the June 24 media event, Microsoft also announced that Windows 11 would be released in "Holiday 2021". Its release will be accompanied by a free upgrade for compatible Windows 10 devices through Windows Update . On June 28, Microsoft announced
3225-504: A separate "Widgets" panel on the taskbar , the ability to create tiled sets of windows that can be minimized and restored from the taskbar as a group, and new gaming technologies inherited from Xbox Series X and Series S such as Auto HDR and DirectStorage on compatible hardware. Internet Explorer (IE) has been replaced by the Chromium -based Microsoft Edge as the default web browser, like its predecessor, Windows 10, and Microsoft Teams
3354-471: A separate motherboard component. Field upgrade is the TCG term for updating the TPM firmware. The update can be between TPM 1.2 and TPM 2.0, or between firmware versions. Some vendors limit the number of transitions between 1.2 and 2.0, and some restrict rollback to previous versions. Platform OEMs such as HP supply an upgrade tool. Since July 28, 2016, all new Microsoft device models, lines, or series (or updating
3483-489: A single TPM. He was able to do this after 6 months of work by inserting a probe and spying on an internal bus for the Infineon SLE 66 CL PC. In case of physical access, computers with TPM 1.2 are vulnerable to cold boot attacks as long as the system is on or can be booted without a passphrase from shutdown, sleep or hibernation , which is the default setup for Windows computers with BitLocker full disk encryption. A fix
3612-485: A small niche market , mostly for specialized field applications, such as in the military, for accountants, or travelling sales representatives. As portable computers evolved into modern laptops, they became widely used for a variety of purposes. The history of the laptop follows closely behind the development of the personal computer itself. A "personal, portable information manipulator" was imagined by Alan Kay at Xerox PARC in 1968, and described in his 1972 paper as
3741-493: A standard for memory cards in PCs. The specification for PCMCIA type I cards, later renamed PC Cards, was first released in 1990. Displays reached 640x480 ( VGA ) resolution by 1988 ( Compaq SLT/286 ), and color screens started becoming a common upgrade in 1991, with increases in resolution and screen size occurring frequently until the introduction of 17" screen laptops in 2003. Hard drives started to be used in portables, encouraged by
3870-587: A type of portable computer that was smaller and lighter than mainstream laptops of the time, but has since come to mean the same thing and no longer refers to any specific size. Laptops are used in a variety of settings, such as at work (especially on business trips ), in education , for playing games , web browsing , for personal multimedia , and for general home computer use. They can run on both AC power and rechargable battery packs and can be folded shut for convenient storage and transportation, making them suitable for mobile use . Laptops combine many of
3999-600: A unified storefront for apps and other content, is also redesigned in Windows 11. Microsoft now allows developers to distribute Win32 , progressive web applications , and other packaging technologies in the Microsoft Store, alongside Universal Windows Platform apps . Microsoft also announced plans to allow third-party application stores (such as Epic Games Store ) to distribute their clients on Microsoft Store. Windows 11 supports x86-64 software emulation on ARM-based platforms. The collaboration platform Microsoft Teams
Trusted Platform Module - Misplaced Pages Continue
4128-459: A vulnerability, known as ROCA, which generated weak RSA key pairs that allowed private keys to be inferred from public keys . As a result, all systems depending upon the privacy of such weak keys are vulnerable to compromise, such as identity theft or spoofing. Cryptosystems that store encryption keys directly in the TPM without blinding could be at particular risk to these types of attacks, as passwords and other factors would be meaningless if
4257-485: A wide range of CPUs designed for laptops available from both Intel , AMD , and other manufacturers. On non- x86 architectures, Motorola and IBM produced the chips for the former PowerPC -based Apple laptops ( iBook and PowerBook ). Between around 2000 to 2014, most full-size laptops had socketed, replaceable CPUs; on thinner models, the CPU was soldered on the motherboard and was not replaceable or upgradable without replacing
4386-402: A window's maximize button displays pre-determined "Snap Layouts" for tiling multiple windows onto a display, and tiled arrangement of windows can be minimized and restored from the taskbar as a "snap group". When a display is disconnected in a multi-monitor configuration, the windows that were previously on that display will be minimized rather than automatically moved to the main display. If
4515-398: Is a concept for a laptop that can be easily disassembled. The terms laptop and notebook both trace their origins to the early 1980s, coined to describe portable computers in a size class smaller than the contemporary mainstream units (so-called "luggables" ) but larger than pocket computers . The etymologist William Safire traced the origin of laptop to some time before 1984;
4644-745: Is also available. The Windows Subsystem for Android and Amazon Appstore became available to Release channel users in the United States on February 15, 2022, in Windows 11 Release build 22000.527. On March 5, 2024, Microsoft announced deprecation of WSA with support ending on March 5, 2025. WSA is based on the Intel Bridge runtime compiler; Intel stated that the technology is not dependent on its CPUs, and will also be supported on x86-64 and ARM CPUs from other vendors. Home and Pro (since version 22H2 ) edition installation requires internet connection and Microsoft account login (only if for personal use on Pro)
4773-533: Is authentic. Starting with TPM 2.0, the certificates are in X.509 DER format. These manufacturers typically provide their certificate authority root (and sometimes intermediate) certificates on their web sites. To utilize a TPM, the user needs a software library that communicates with the TPM and provides a friendlier API than the raw TPM communication. Currently, there are several such open-source TPM 2.0 libraries. Some of them also support TPM 1.2, but mostly TPM 1.2 chips are now deprecated and modern development
4902-493: Is available in two main editions; the Home edition, which is intended for consumer users, and the Pro edition, which contains additional networking and security features (such as BitLocker ), as well as the ability to join a domain . Windows 11 Home may be restricted by default to verified software obtained from Microsoft Store ("S Mode"). Windows 11 Home requires an Internet connection and
5031-400: Is available." The DoD anticipates that TPM is to be used for device identification, authentication, encryption, and device integrity verification. In 2006 new laptops began being sold with a built-in TPM chip. In the future, this concept could be co-located on an existing motherboard chip in computers, or any other device where the TPM facilities could be employed, such as a cellphone . On
5160-457: Is designed to be managed via Microsoft Intune , and has changed based on feedback from educators to simplify the user interface and reduce "distractions", such as Snap Layouts not containing layouts for more than two applications at once, all applications opening maximized by default, and Widgets being removed. It is bundled with applications such as Microsoft Office for Microsoft 365 , Minecraft Education Edition , and Flipgrid, while OneDrive
5289-406: Is focused on TPM 2.0. Windows 11 24H2 (10.0.26100.2454) (November 21, 2024 ; 8 days ago ( 2024-11-21 ) ) [±] 23H2 (10.0.22635.4515) (November 22, 2024 ; 7 days ago ( 2024-11-22 ) ) [±] 24H2 (10.0.26120.2415) (November 22, 2024 ; 7 days ago ( 2024-11-22 ) ) [±] Windows 11
Trusted Platform Module - Misplaced Pages Continue
5418-432: Is hosted on SourceForge and GitHub and licensed under BSD License. In 2022, AMD announced that under certain circumstances their fTPM implementation causes performance problems. A fix is available in form of a BIOS -Update. While TPM 2.0 addresses many of the same use cases and has similar features, the details are different. TPM 2.0 is not backward compatible with TPM 1.2. The TPM 2.0 policy authorization includes
5547-473: Is in the use of Microsoft Office 365 licensing and Outlook Exchange. Another example of TPM use for platform integrity is the Trusted Execution Technology (TXT), which creates a chain of trust. It could remotely attest that a computer is using the specified hardware and software. Full disk encryption utilities, such as dm-crypt , can use this technology to protect the keys used to encrypt
5676-536: Is integrated into the Windows 11 user interface, and is accessible via the taskbar. Skype will no longer be bundled with the OS by default. In early 2023, the Phone Link app gained limited support for iMessage . Microsoft claims performance improvements such as smaller update sizes, faster web browsing in "any browser", faster wake time from sleep mode, and faster Windows Hello authentication. Windows 11 ships with
5805-489: Is integrated into the Windows shell. Microsoft also announced plans to allow more flexibility in software that can be distributed via the Microsoft Store and to support Android apps on Windows 11 (including a partnership with Amazon to make its app store available for the function). Citing security considerations, the system requirements for Windows 11 were increased over Windows 10; Microsoft only officially supports
5934-545: Is mandatory unless manually bypassed to create a local user. However, Microsoft has since blocked one of the last remaining easy bypass methods that allowed local account creation during initial setup, complicating the bypass process further. All other editions are excluded from this requirement. As part of the minimum system requirements, Windows 11 only runs on devices with a Trusted Platform Module 2.0 security coprocessor, albeit with some exceptions, see § System requirements for details. According to Microsoft,
6063-476: Is mounted, although, as of 2021, an increasing number of models use memory soldered to the motherboard, either alongside SO-DIMM slots or without any slots and soldering all memory to the motherboard, but a new form factor, the CAMM module , is slated to fix the size and timing limitation. Before 2000, most laptops used proprietary memory modules if their memory was upgradable. In the early 2010s, high end laptops such as
6192-429: Is no clear dividing line in minimum or maximum size. Machines small enough to be handheld (screens in the 6–8" range) can be marketed either as very small laptops or "handheld PCs", while the distinction between the largest laptops and "All-in-One" desktops is whether they fold for travel. Having a higher resolution display allows more items to fit onscreen at a time, improving the user's ability to multitask, although, at
6321-430: Is not unknown as of 2022, but since around 2010, the practice has been restricted to small-volume gaming models. Laptop CPUs are rarely able to be overclocked ; most use locked processors. Even on gaming models where unlocked processors are available, the cooling system in most laptops is often very close to its limits and there is rarely headroom for an overclocking–related operating temperature increase. On most laptops,
6450-407: Is only a matter of time before other security measures in place are bypassed. However, stopping an attacker in possession of administrative privileges has never been one of the goals of TPM (see § Uses for details), and TPM can stop some physical tampering . In 2015 Richard Stallman suggested to replace the term "Trusted computing" with the term "Treacherous computing" due to the danger that
6579-449: Is physically present at the console of the machine. The United States Department of Defense (DoD) specifies that "new computer assets (e.g., server, desktop, laptop, thin client, tablet, smartphone, personal digital assistant, mobile phone) procured to support DoD will include a TPM version 1.2 or higher where required by Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs) and where such technology
SECTION 50
#17328490451176708-542: Is present frequently throughout the operating system, building upon the Fluent Design System ; translucency, shadows, a new color palette, and a rounded geometry are prevalent throughout the UI. A prevalent aspect of the design is an appearance known as "Mica", described as an "opaque, dynamic material that incorporates theme and desktop wallpaper to paint the background of long-lived windows such as apps and settings". Much of
6837-527: Is running on non-tampered components. In 2021, the Dolos Group showed an attack on a discrete TPM, where the TPM chip itself had some tamper resistance, but the other endpoints of its communication bus did not. They read a full-disk-encryption key as it was transmitted across the motherboard, and used it to decrypt the laptop's SSD. In October 2017, it was reported that a code library developed by Infineon , which had been in widespread use in its TPMs, contained
6966-521: Is the first version of Windows since the original retail release of Windows 95 to not ship with Internet Explorer. The updated Xbox app , along with the Auto HDR and DirectStorage technologies introduced by the Xbox Series X and Series S , will be integrated into Windows 11; the latter requiring a graphics card supporting DirectX 12 and an NVMe solid-state drive . A redesigned user interface
7095-471: Is the latest major release of Microsoft 's Windows NT operating system, released on October 5, 2021. It succeeded Windows 10 (2015), and is available for free for any Windows 10 devices that meet the new Windows 11 system requirements . Windows 11 features major changes to the Windows shell influenced by the canceled Windows 10X , including a redesigned Start menu , the replacement of its "live tiles" with
7224-638: Is used to save files by default. Windows 11 SE does not include Microsoft Store; third-party software is provisioned or installed by administrators. To target organizations migrating from Google Chrome, Microsoft Edge is configured by default to enable the installation of extensions from the Chrome Web Store . Other editions include Pro Education, Pro for Workstations, Education, Enterprise, Enterprise multi-session, IoT Enterprise, Enterprise LTSC, IoT Enterprise LTSC, Home Single Language, and Team; along with regional variations. These editions remain fundamentally
7353-569: The Burj Khalifa in Dubai being illuminated with imagery of the Windows 11 logo and default "Bloom" wallpaper, and Mikey Likes It ice cream parlors in New York City distributing free cups of "Bloomberry" ice cream. Though a support document listed October 4, 2021, as the initial release date, Microsoft officially released Windows 11 on October 5, 2021, as an opt-in, in-place upgrade through either
7482-469: The Chromium -based Microsoft Edge web browser (for compatibility with Google Chrome web browser ), and does not include or support Internet Explorer . Its rendering engine MSHTML (Trident) is still included with the operating system for backwards compatibility reasons, and Edge can be configured with Group Policy to render whitelisted websites in "IE Mode" (which still uses IE's rendering engine MSHTML , instead of Blink layout engine ). Windows 11
7611-576: The Socket G2 , but many laptops use processors that are soldered to the motherboard. Many laptops come with RAM and storage that is soldered to the motherboard and cannot be easily replaced. This restriction is one of the major differences between laptops and desktop computers, because the large " tower " cases used in desktop computers are designed so that new motherboards , hard disks , sound cards , RAM , and other components can be added. Memory and storage can often be upgraded with some disassembly, but with
7740-565: The flip form factor appeared in the early 1980s. The Dulmont Magnum was released in Australia in 1981–82, but was not marketed internationally until 1984–85. The US$ 8,150 (equivalent to $ 25,730 in 2023) GRiD Compass 1101 , released in 1982, was used at NASA and by the military , among others. The Sharp PC-5000 , the Ampere WS-1 , and Gavilan SC were released between 1983 and 1985. The Toshiba T1100 won acceptance by PC experts and
7869-496: The input/output components and capabilities of a desktop computer into a single unit, including a display screen (usually 11–17 in or 280–430 mm in diagonal size), small speakers, a keyboard, and a pointing device (namely compact ones such as touchpads or pointing sticks ). Hardware specifications may vary significantly between different types, models, and price points . Design elements, form factors, and construction can also vary significantly between models depending on
SECTION 60
#17328490451177998-575: The " Dynabook ". The IBM Special Computer APL Machine Portable (SCAMP) was demonstrated in 1973. This prototype was based on the IBM PALM processor . The IBM 5100 , the first commercially available portable computer , appeared in September 1975, and was based on the SCAMP prototype. As 8-bit CPU machines became widely accepted, the number of portables increased rapidly. The first "laptop-sized notebook computer"
8127-425: The " treacherous computing " threat he had warned of. Linux Torvalds in 2023 wrote that there is no way to believe that randomness generated by TPM is any better than randomness generated anyway by the CPU, and there is no point in supporting randomness from a firmware source. In 2010 Christopher Tarnovsky presented an attack against TPMs at Black Hat Briefings , where he claimed to be able to extract secrets from
8256-489: The 1.2 HMAC, locality, physical presence, and PCR. It adds authorization based on an asymmetric digital signature, indirection to another authorization secret, counters and time limits, NVRAM values, a particular command or command parameters, and physical presence. It permits the ANDing and ORing of these authorization primitives to construct complex authorization policies. The Trusted Computing Group (TCG) has faced resistance to
8385-450: The 1970s introduction of portable computers, their forms have changed significantly, spawning a variety of visually and technologically differing subclasses. Excepting distinct legal trademark around terms (notably Ultrabook ), hard distinctions between these classes were rare, and their usage has varied over time and between sources. Since the late 2010s, more specific terms have become less commonly used, with sizes distinguished largely by
8514-427: The 1980s using red plasma displays could only be used when connected to AC power, and had a built in power supply. The development of memory cards was driven in the 1980s by the need for a floppy-disk-drive alternative, having lower power consumption, less weight, and reduced volume in laptops. The Personal Computer Memory Card International Association (PCMCIA) was an industry association created in 1989 to promote
8643-509: The 2011 Samsung 700G7A have passed the 10 GB RAM barrier, featuring 16 GB of RAM. When upgradeable, memory slots are sometimes accessible from the bottom of the laptop for ease of upgrading; in other cases, accessing them requires significant disassembly. Most laptops have two memory slots, although some will have only one, either for cost savings or because some amount of memory is soldered. Some high-end models have four slots; these are usually mobile engineering workstations, although
8772-405: The 2015 Ignite conference , Microsoft employee Jerry Nixon stated that Windows 10 would be the "last version of Windows". The operating system was considered to be a service , with new builds and updates to be released over time. PC World argued that the widely reported comment was however taken out of context , noting that the official event transcript marks it only as a segue rather than
8901-546: The GPU is integrated into the CPU to conserve power and space. This was introduced by Intel with the Core i-series of mobile processors in 2010, followed by similar AMD APU processors in January 2011. Before that, lower-end machines tended to use graphics processors integrated into the system chipset , while higher-end machines had a separate graphics processor. In the past, laptops lacking
9030-649: The Home and Pro editions, and three years for the Education and Enterprise editions. Microsoft has stated that Windows 11 provides no lifecycle guarantee if it has been installed on a machine that does not meet its minimum hardware requirements. Windows 11 receives annual major updates, though Microsoft sometimes adds major features in mid-cycle releases. Starting in 2022, in the Enterprise and Education editions, major features added in yearly releases will be turned off by default until
9159-539: The OS can be installed on devices with unsupported configurations, Microsoft does not guarantee the availability of updates . Furthermore, Windows 11 completely removes support for 32-bit CPUs, including both 32-bit x86 and 32-bit ARM processors, ensuring compatibility only with 64-bit x86-64 and ARM64 processors. Windows 11 received a mixed reception at launch. Pre-release coverage of the operating system focused on its stricter hardware requirements, with discussions over whether they were legitimately intended to improve
9288-517: The Software Stack (TSS) Enhanced System API (ESAPI) specification of the TCG. It was developed by Fraunhofer Institute for Secure Information Technology (SIT). IBM 's Software TPM 2.0 is an implementation of the TCG TPM 2.0 specification. It is based on the TPM specification Parts 3 and 4 and source code donated by Microsoft. It contains additional files to complete the implementation. The source code
9417-432: The TPM 2.0 Specification has been developed by Microsoft . It is licensed under BSD License and the source code is available on GitHub . In 2018 Intel open-sourced its Trusted Platform Module 2.0 (TPM2) software stack with support for Linux and Microsoft Windows. The source code is hosted on GitHub and licensed under BSD License . Infineon funded the development of an open source TPM middleware that complies with
9546-801: The TPM 2.0 coprocessor is a "critical building block" for protection against firmware and hardware attacks. In addition, Microsoft now requires devices with Windows 11 to include virtualization-based security (VBS), hypervisor-protected code integrity (HVCI), and Secure Boot built-in and enabled by default. The operating system also features hardware-enforced stack protection for supported Intel and AMD processors for protection against zero-day exploits . Like its predecessor, Windows 11 also supports multi-factor authentication and biometric authentication through Windows Hello. In subsequent updates, Microsoft added several features based on artificial intelligence (AI), like live captions, background noise removal in videoconferencing, webcam auto-framing that follows
9675-484: The Windows 11 Installation Assistant application (which can perform the upgrade, or generate an ISO image or USB install media), or via Windows Update in a phased rollout; Microsoft anticipated that Windows 11 would be available via Windows Update to all eligible devices by mid-2022. New installations of Windows 10 on eligible hardware may present an option to upgrade during the OOBE. Retail copies of Windows 11 (consisting of
9804-452: The Windows imaging process. Any user, not just admins, can now add both the display language and its features, which can help users in business environments, but these exact options for languages (both LP and LIP) still depend on the OEM and mobile operator. Like Windows 10, Windows 11 follows Microsoft's Modern Lifecycle Policy. Each annual feature update has its own support lifecycle: two years for
9933-470: The ability to conceal a hardware keyboard. Keyboards on such devices can be flipped, rotated, or slid behind the back of the chassis, thus transforming from a laptop into a tablet. Hybrids have a keyboard detachment mechanism, and due to this feature, all critical components are situated in the part with the display. 2-in-1s can have a hybrid or a convertible form, often dubbed 2-in-1 detachable and 2-in-1 convertibles respectively, but are distinguished by
10062-459: The ability to run a desktop OS , such as Windows 10 . 2-in-1s are often marketed as laptop replacement tablets . 2-in-1s are often very thin, around 10 millimetres (0.39 in), and light devices with a long battery life. 2-in-1s are distinguished from mainstream tablets as they feature an x86 -architecture CPU (typically a low- or ultra-low-voltage model), such as the Intel Core i5 , run
10191-400: The attacks can extract encryption secrets. Infineon has released firmware updates for its TPMs to manufacturers who have used them. Currently, a TPM is provided by nearly all PC and notebook manufacturers in their products. The TPM is implemented by several vendors: There are also hybrid types; for example, TPM can be integrated into an Ethernet controller, thus eliminating the need for
10320-465: The company". At the Microsoft Build 2021 developer conference, CEO and chairman Satya Nadella teased about the existence of the next generation of Windows during his keynote speech . According to Nadella, he had been self-hosting it for several months. He also teased that an official announcement would come very soon. Just a week after Nadella's keynote, Microsoft started sending invitations for
10449-456: The computer can be made to systematically disobey its owner if the cryptographical keys are kept secret from them. He also considers that TPMs available for PCs in 2015 are not currently dangerous and that there is no reason not to include one in a computer or support it in software due to failed attempts from the industry to use that technology for DRM , but that the TPM2 released in 2022 is precisely
10578-471: The computer's storage devices and provide integrity authentication for a trusted boot pathway that includes firmware and the boot sector . Any application can use a TPM chip for: Other uses exist, some of which give rise to privacy concerns. The "physical presence" feature of TPM addresses some of these concerns by requiring BIOS / UEFI -level confirmation for operations such as activating, deactivating, clearing or changing ownership of TPM by someone who
10707-581: The cost of physical space and portability. Higher-end laptops intended for gaming or professional 3D work still come with dedicated (and in some cases even dual) graphics processors on the motherboard or as an internal expansion card . Since 2011, these almost always involve switchable graphics so that when there is no demand for the higher performance dedicated graphics processor, the more power-efficient integrated graphics processor will be used. Nvidia Optimus and AMD Hybrid Graphics are examples of this sort of system of switchable graphics. Traditionally,
10836-403: The deployment of this technology in some areas, where some authors see possible uses not specifically related to Trusted Computing , which may raise privacy concerns. The concerns include the abuse of remote validation of software decides what software is allowed to run and possible ways to follow actions taken by the user being recorded in a database, in a manner that is completely undetectable to
10965-465: The earliest attestation of laptop found by the Oxford English Dictionary dates to 1983. The word is modeled after the term desktop , as in desktop computer . Notebook , meanwhile, emerged earlier in 1982 to describe Epson 's HX-20 portable, whose dimensions roughly correspond to a letter -sized pad of paper . Notebooks emerged as their own separate market from laptops with
11094-417: The early 2010s. Optical disc drives became common in full-size laptops around 1997: initially, CD-ROM drives, supplanted by CD-R, then DVD, then Blu-ray drives with writing capability. Starting around 2011, the trend shifted against internal optical drives, and as of 2022, they have largely disappeared, though are still readily available as external peripherals . In 2021, Dell showed Concept Luna, which
11223-411: The first major Windows release since 2015, builds upon its predecessor by revamping the user interface to follow Microsoft's new Fluent Design guidelines. The redesign, which focuses on ease of use and flexibility, comes alongside new productivity and social features and updates to security and accessibility, addressing some of the deficiencies of Windows 10 . The Microsoft Store , which serves as
11352-460: The forefront, we need to focus on meeting customers where they are now", and announced that Windows 10X would only launch on single-screen devices at first, and that Microsoft would "continue to look for the right moment, in conjunction with our OEM partners, to bring dual-screen devices to market". In October 2020, reports emerged that Microsoft was working on a user interface refresh for Windows 10 codenamed "Sun Valley", scheduled to be included in
11481-462: The hardware configuration of an existing model, line, or series with a major update, such as CPU, graphic cards) implement, and enable by default TPM 2.0. While TPM 1.2 parts are discrete silicon components, which are typically soldered on the motherboard, TPM 2.0 is available as a discrete (dTPM) silicon component in a single semiconductor package, an integrated component incorporated in one or more semiconductor packages - alongside other logic units in
11610-763: The higher resolutions on smaller screens, the resolution may only serve to display sharper graphics and text rather than increasing the usable area. Since the introduction of the MacBook Pro with Retina display in 2012, there has been an increase in the availability of "HiDPI" (or high Pixel density ) displays; as of 2022, this is generally considered to be anything higher than 1920 pixels wide. This has increasingly converged around 4K (3840-pixel-wide) resolutions. External displays can be connected to most laptops, with most models supporting at least one. The use of technology such as USB4 (section Alternate Mode partner specifications ). DisplayPort Alt Mode has been utilized to charge
11739-483: The inside of the lower lid. Most of the computer's internal hardware is fitted inside the lower lid enclosure under the keyboard, although many modern laptops have a built-in webcam at the top of the screen, and some even feature a touchscreen display. In most cases, unlike tablet computers which run on mobile operating systems , laptops tend to run on desktop operating systems, which were originally developed for desktop computers . The word laptop , modeled after
11868-644: The intended use. Examples of specialized models of laptops include 2-in-1 laptops , with keyboards that either be detached or pivoted out of view from the display (often marketed having a "laptop mode"); rugged laptops , for use in construction or military applications ; and low-production-cost laptops such as those from the One Laptop per Child (OLPC) organization, which incorporate features like solar charging and semi-flexible components not found on most laptop computers. Portable computers , which later developed into modern laptops, were originally considered to be
11997-423: The interface and start menu takes heavy inspiration from the now-canceled Windows 10X. The Segoe UI font used since Windows Vista has been updated to a variable version, improving its ability to scale between different display resolutions. The taskbar 's buttons are center-aligned by default, and it is permanently pinned to the bottom edge of the screen; it cannot be moved to the top, left, or right edges of
12126-464: The introduction of 3.5" drives in the late 1980s, and became common in laptops starting with the introduction of 2.5" and smaller drives around 1990; capacities have typically lagged behind those of physically larger desktop drives. Resolutions of laptop webcams are 720p (HD), or 480p in lower-end laptops. The earliest-known laptops with 1080p (Full HD) webcams, like the Samsung 700G7C, were released in
12255-425: The languages available for download on supported PCs). The 38 fully-localized Language Pack (LP) languages were available as both lp.cab and .appx packages, while the remaining 72 partially-localized Language Interface Pack (LIP) languages were only available as .appx packages. With Windows 11, that process has changed. Five new LP languages were added — Catalan, Basque, Galician, Indonesian, and Vietnamese — bringing
12384-478: The low price and mainstream performance, there is no longer a significant performance difference between laptop and desktop CPUs, but at the high end, the fastest desktop CPUs still substantially outperform the fastest laptop processors, at the expense of massively higher power consumption and heat generation; the fastest laptop processors top out at 56 watts of heat, while the fastest desktop processors top out at 150 watts (and often need water cooling). There has been
12513-691: The market share. Windows 11 has an estimated 23% share of all PCs (the rest being other Windows editions and other operating systems such as macOS and Linux ), and an estimated 8.6% share of all devices (including mobile, tablet and console) are running Windows 11. To comply with the Digital Markets Act , Microsoft is allowing users in the European Economic Area to remove the Microsoft Edge browser, Microsoft Bing search engine, and advertisements to comply with users' interests. At
12642-560: The mass market as a way to have PC portability. From 1983 onward, several new input techniques were developed and included in laptops, including the touch pad ( Gavilan SC , 1983), the pointing stick (IBM ThinkPad 700 , 1992), and handwriting recognition (Linus Write-Top, 1987). Some CPUs, such as the 1990 Intel i386SL , were designed to use minimum power to increase the battery life of portable computers and were supported by dynamic power management features such as Intel SpeedStep and AMD PowerNow! in some designs. Some laptops in
12771-406: The maximum performance of laptop parts compared to that of desktop components, although that difference has increasingly narrowed. In general, laptop components are not intended to be replaceable or upgradable by the end-user, except for components that can be detached; in the past, batteries and optical drives were commonly exchangeable. Some laptops feature socketed processors with sockets such as
12900-479: The most compact laptops, there may be no upgradeable components at all. The following sections summarize the differences and distinguishing features of laptop components in comparison to desktop personal computer parts. The typical laptop has a screen that, when unfolded, is upright to the user. Laptop screens most commonly employ liquid-crystal display (LCD) technology, although use of OLED panels has risen substantially since 2020. The display interfaces with
13029-921: The motherboard using the embedded DisplayPort protocol via the Low-voltage differential signaling (LVDS) 30 or 40 pin connector. The panels are mainly manufactured by AU Optronics , BOE Technology , LG Display or Samsung Display . Externally, it can be a glossy or a matte (anti-glare) screen. In the past, there was a broader range of marketing terms (both formal and informal) to distinguish between different sizes of laptops. These included Netbooks , subnotebooks , Ultra-mobile PC , and Desktop replacement computers ; these are sometimes still used informally, although they are essentially dead in terms of manufacturer marketing. As of 2021, mainstream consumer laptops tend to come with 11", 13" or 15"-16" screens; 14" models are more popular among business machines. Larger and smaller models are available, but less common – there
13158-428: The motherboard. Since 2015, Intel has not offered new laptop CPU models with pins to be interchangeable, preferring ball grid array chip packages which have to be soldered; and as of 2021, only a few rare models using desktop parts. In the past, some laptops have used a desktop processor instead of the laptop version and have had high-performance gains at the cost of greater weight, heat, and limited battery life; this
13287-411: The next yearly release, though these features can be manually enabled as a group policy . Laptop A laptop computer or notebook computer , also known as a laptop or notebook , is a small, portable personal computer (PC). Laptops typically have a clamshell form factor with a flat-panel screen on the inside of the upper lid and an alphanumeric keyboard and pointing device on
13416-407: The operating system on devices using an eighth-generation Intel Core CPU or newer (with some minor exceptions), a second-generation AMD Ryzen CPU or newer, or a Qualcomm Snapdragon 850 ARM system-on-chip or newer, with UEFI and Trusted Platform Module (TPM) 2.0 supported and enabled. Although, there are some exceptions to these requirements (see § System requirements for details). While
13545-474: The release of the NEC UltraLite in 1988. Notebooks and laptops continued to occupy distinct market segments into the mid-1990s, but ergonomic considerations and customer preference for larger screens soon led to notebooks converging with laptops in the late 1990s. Today, the terms laptop and notebook are synonymous, with laptop being the more common term in most English-speaking territories. Since
13674-472: The release of the first preview build and SDK of Windows 11 to Windows Insiders . On August 31, 2021, Microsoft announced that Windows 11 was to be released on October 5, 2021. The release would be phased, with newer eligible devices to be offered the upgrade first. Since its predecessor Windows 10 was released on July 29, 2015, more than six years earlier, this is the longest time span between successive releases of Microsoft Windows operating systems, beating
13803-436: The removal of features like the ability to move the taskbar and increased system requirements that may exclude older devices. As of November 2024 , Windows 11, at 35% worldwide, is the second most popular Windows version in use, with its predecessor Windows 10 still being the most used version in virtually all countries (with Guyana being an exception, where Windows 11 is the most used ), with it globally at over 2 times
13932-542: The replacement of shell resources dating back as far as Windows 95 ), improvements to Task View to allow changing the wallpaper on each virtual desktop , x86-64 emulation on ARM, and adding the Auto HDR feature from Xbox Series X . On May 18, 2021, Head of Windows Servicing and Delivery John Cable stated that Windows 10X had been canceled and that Microsoft would be "accelerating the integration of key foundational 10X technology into other parts of Windows and products at
14061-448: The same as their Windows 10 edition counterparts. Two new editions called IoT Enterprise Subscription and IoT Enterprise Subscription LTSC have been introduced in version 24H2 . Before the launch of Windows 11, OEMs (as well as mobile operators) and businesses were offered two options for device imaging: Component-Based Servicing lp.cab files (for the languages to be preloaded on the first boot) and Local Experience Pack .appx files (for
14190-410: The same day. The Windows 11 name was accidentally released in an official Microsoft support document in June 2021. Leaked images of a purported beta build of Windows 11's desktop surfaced online later on June 15, 2021, which were followed by a leak of the aforementioned build on the same day. The screenshots and leaked build show an interface resembling that of the canceled Windows 10X, alongside
14319-478: The same display is reconnected, the windows are restored to their prior location. On October 21, 2021, Windows Subsystem for Android (WSA) became available to Beta channel builds of Windows 11 for users in the United States, which allows users to install and run Android apps on their devices. Users can install Android apps through any source using the APK file format. An Amazon Appstore client for Microsoft Store
14448-451: The same package(s), and as a firmware (fTPM) based component running in a trusted execution environment (TEE) on a general purpose System-on-a-chip (SoC). TPM endorsement keys (EKs) are asymmetric key pairs unique to each TPM. They use the RSA and ECC algorithms. The TPM manufacturer usually provisions endorsement key certificates in TPM non-volatile memory . The certificates assert that the TPM
14577-405: The screen as in previous versions of Windows without manual changes to the registry . The notifications sidebar is now accessed by clicking the date and time, with other Quick Actions toggles, as well as volume, brightness, and media playback controls, moved to a new settings pop-up displayed by clicking on the system tray. The "Widgets" button on the taskbar displays a panel with Microsoft Start ,
14706-519: The security of Windows, or as a ploy to upsell customers to newer devices, and over the e-waste associated with the changes. Upon release, it was praised for its improved visual design, window management, and stronger focus on security, but was criticized for various modifications to aspects of its user interface that were seen as worse than its predecessor; some were seen as an attempt to dissuade users from switching to competing applications. Additionally, some users have pointed out disadvantages such as
14835-432: The size of mainstream laptops has gone down and their capabilities have gone up; except for niche models, laptop sizes tend to be distinguished by the size of the screen, and for more powerful models, by any specialized purpose the machine is intended for, such as a " gaming laptop " or a " mobile workstation " for professional use. The latest trend of technological convergence in the portable computer industry spawned
14964-511: The size of the screen. There were in the past a number of marketing categories for smaller and larger laptop computers; these included "notebook" and " subnotebook " models, low cost " netbooks ", and " ultra-mobile PCs " where the size class overlapped with devices like smartphone and handheld tablets , and " Desktop replacement " laptops for machines notably larger and heavier than typical to operate more powerful processors or graphics hardware . All of these terms have fallen out of favor as
15093-557: The standard incorporating errata, algorithmic additions and new commands, with its most recent edition published as 2.0 in November 2019. This version became ISO/IEC 11889:2015. When a new revision is released it is divided into multiple parts by the Trusted Computing Group. Each part consists of a document that makes up the whole of the new TPM specification. The Trusted Platform Module (TPM) provides: Computer programs can use
15222-413: The static root of trust for measurement (SRTM) was reported ( CVE - 2018-6622 ). It allows an adversary to reset and forge platform configuration registers which are designed to securely hold measurements of software that are used for bootstrapping a computer. Fixing it requires hardware-specific firmware patches. An attacker abuses power interrupts and TPM state restores to trick TPM into thinking that it
15351-418: The system RAM on laptops (as well as on desktop computers) was physically separate from the graphics memory used by the GPU. Apple's M series SoCs feature a unified pool of memory for both the system and the GPU; this approach can produce substantial efficiency gains for some applications but comes at the cost of eGPU support. Since around the year 2000, most laptops have used SO-DIMM slots in which RAM
15480-491: The term desktop (as in desktop computer ), refers to the fact that the computer can be practically placed on the user's lap ; while the word notebook refers to most laptops sharing a form factor with paper notebooks . As of 2024 , in American English , the terms laptop and notebook are used interchangeably; in other dialects of English , one or the other may be preferred. The term notebook originally referred to
15609-437: The time between Windows XP (released on October 25, 2001) and Windows Vista (released on January 30, 2007). The first television commercial for Windows 11 premiered during the 2021 NFL Kickoff Game on September 9, 2021; it was intended to showcase a "feeling of immersion and fluidity", with imagery of operating system features and Xbox Game Studios ' Halo Infinite . Other promotional campaigns on release day included
15738-399: The total number of LP languages to 43. Furthermore, these 43 languages can only be imaged using lp.cab packages. This is to ensure a fully supported language-imaging and cumulative update experience. The remaining 67 LIP languages that are LXP-based will move to a self-service model, and can only be added by Windows users themselves via the Microsoft Store and Windows Settings apps, not during
15867-494: The user's activity (including content transcribed using live captions), and allow users to search through them. This feature will be exclusive to devices certified under the "Copilot+ PC" branding. Following pushback from the cyber security community, Microsoft delayed the feature in June 2024. A preview version will be added to the Microsoft Insider program at later date in order to test added security measures. Windows 11
15996-425: The user's movements, and AI-powered Bing Chat in the taskbar's search field. Following the integration of GPT-4 in Microsoft's other products, the company announced that by summer 2023, the newly released Microsoft Copilot would add GPT-4 integration to the Windows taskbar. On May 20, 2024, Microsoft officially announced "Recall"—a feature that will use a hardware AI accelerator to locally store "snapshots" of
16125-440: The user. The TrueCrypt disk encryption utility, as well as its derivative VeraCrypt , do not support TPM. The original TrueCrypt developers were of the opinion that the exclusive purpose of the TPM is "to protect against attacks that require the attacker to have administrator privileges, or physical access to the computer". The attacker who has physical or administrative access to a computer can circumvent TPM, e.g., by installing
16254-403: Was officially announced at a virtual event hosted by Chief Product Officer Panos Panay . According to Nadella, Windows 11 is "a re-imagining of the operating system". Further details for developers such as updates to the Microsoft Store , the new Windows App SDK (code-named "Project Reunion"), new Fluent Design guidelines, and more were discussed during another developer-focused event on
16383-506: Was proposed, which has been adopted in the specifications for TPM 2.0. In 2009, the concept of shared authorisation data in TPM 1.2 was found to be flawed. An adversary given access to the data could spoof responses from the TPM. A fix was proposed, which has been adopted in the specifications for TPM 2.0. In 2015 as part of the Snowden revelations , it was revealed that in 2010 a US CIA team claimed at an internal conference to have carried out
16512-483: Was standardized by International Organization for Standardization (ISO) and International Electrotechnical Commission (IEC) in 2009 as ISO/IEC 11889:2009. TPM Main Specification Version 1.2 was finalized on 3 March 2011 completing its revision. On 9 April 2014 the Trusted Computing Group announced a major upgrade to their specification entitled TPM Library Specification 2.0 . The group continues work on
16641-798: Was the Epson HX-20 , invented (patented) by Suwa Seikosha 's Yukio Yokozawa in July 1980, introduced at the COMDEX computer show in Las Vegas by Japanese company Seiko Epson in 1981, and released in July 1982. It had an LCD screen, a rechargeable battery, and a calculator-size printer, in a 1.6 kg (3.5 lb) chassis, the size of an A4 notebook . It was described as a "laptop" and "notebook" computer in its patent. Both Tandy/RadioShack and Hewlett-Packard (HP) also produced portable computers of varying designs during this period. The first laptops using
#116883