Trusted Platform Module

TPM Drivers — The Quiet Security Chip Inside Your PC

What the Trusted Platform Module is, why Windows 11 made it mandatory, and what its driver actually does for everyday users.

The Quiet Security Module

A TPM (Trusted Platform Module) is a small dedicated security chip — or a firmware equivalent inside the CPU — that handles cryptographic operations isolated from the main system. It generates and stores cryptographic keys, attests to system integrity, and underpins features like BitLocker and Windows Sign-in.

Most modern PCs include either a dedicated TPM chip or a 'firmware TPM' built into the processor. From the operating system's perspective, both look identical and both rely on the TPM driver to mediate communication.

TPM concept

Why Windows 11 Made It Mandatory

Windows 11 famously requires a TPM 2.0 — and a fair share of older PCs were caught out by this requirement. Windows' reasoning is straightforward: certain core security features become much weaker without a hardware root of trust.

If your PC supports TPM but it is not enabled, the option lives in the Bios/Uefi under names like 'PTT' (platform trust technology) or 'firmware TPM). Toggling it on enables Windows 11 install eligibility on most modern hardware.

  • TPM 2.0 required for Windows 11
  • PTT/fTPM is the firmware-based version
  • Bios toggle usually enables it on supported PCs
Bios configuration concept

What the TPM Driver Does

The TPM driver is a small layer that sits between Windows and the TPM chip, mediating commands and responses. It rarely needs user attention — Windows installs the right driver automatically when it detects a TPM.

If Device Manager shows your TPM with a warning icon, the most common cause is a firmware mismatch: the Bios has updated TPM firmware in a way that the OS-side driver has not yet caught up to. Updating Windows usually resolves it within a release or two.

TPM diagnostic concept
Quick Answers

Frequently Asked Questions

The questions readers send us most often on this topic.

Either a dedicated chip on the motherboard or as firmware inside the CPU. Modern PCs increasingly use the firmware option.

No — Windows installs it automatically. Manual install is only needed in specialised enterprise or development scenarios.

Yes, but it removes any keys stored there. BitLocker recovery keys must be available before clearing or you will lose access to encrypted drives.

Keep Reading

Related Overviews on PrintSoftDriver

Hand-picked articles that pair well with this one.

System Drivers Explained

Foundation reading.

Windows 11 Driver Overview

Where TPM 2.0 is required.

What Is a Device Driver?

Foundation reading.

More Device Driver Reads

Explore our full library of plain-English driver explainers.

Visit the Blog Knowledge Center