Why does Windows 11 need secure boot


Only my 2cents. I am extremely happy with Windows 11 and secure boot but I am only a casual gamer and am happy nowadays with the built in apps for doing things. I like feeling more secure when I am on my laptop. There is so much nasty stuff out there nowadays. Good online habits and regular backups go a long way with keeping you safe but I like that extra little kick in the security with secure boot. I really am happy with Windows 11 and will be upgrading my other laptop to it soon. I also can't wait to be able to run some android games on my laptop. As soon as I am real familiar with windows 11, I will be doing a clean install.
 

My Computers

System One System Two

  • OS
    Windows11
    Computer type
    Laptop
    Manufacturer/Model
    Huawei Matebook X Pro
    CPU
    intel 8250 I5
    Memory
    8gb
    Graphics Card(s)
    intel uhd 620
    Monitor(s) Displays
    built in laptop display
    Screen Resolution
    1920x1280
    Hard Drives
    Samsung 970 Evo 500gb M2
    Browser
    Edge
    Antivirus
    Defender
  • Operating System
    Windows 10
    Computer type
    Laptop
    Manufacturer/Model
    Acer A515-43-R6DE
    CPU
    AMD Ryzen 7300U
    Memory
    16 GB DDR4
    Graphics card(s)
    AMD Raedon RX Vega graphics onboard
    Monitor(s) Displays
    15"6 FHD IPS Slim Bezel
    Hard Drives
    512cb PCie NVME SSD
    Case
    Pure Silver
    Mouse
    Touchpad and Logitech external mouse
    Keyboard
    Inbuilt
    Browser
    Edge
    Antivirus
    Defender
With an updated antivirus and careful browsing one could never get infected even on Windows XP. Extra security is always welcome as long as it doesn't affect my everyday computing. I value compatibility a lot, so I'm running Windows 10 or 11. Probably a Linux or Solaris system would be more secure, almost virus free, but then it would do only very specific operations. I prefer a less secure general-purpose and fully compatible computer with most hardware and software. For users like me Windows 10 or 11 have no alternative. Linux is an undesired compromise, like artificial sweeteners are compared to sugar. Linux will never match the compatibility of Windows. No thanks. I want no compromise, I prefer maximizing my computer's capabilities and this can only be done running Windows 11. If I have to hack setup to install Windows 11, so be it
 

My Computers

System One System Two

  • OS
    Windows 11 Pro 23H2 64-bit (build 22631.3235)
    Computer type
    Laptop
    Manufacturer/Model
    Acer Extensa 5630EZ
    CPU
    Mobile DualCore Intel Core 2 Duo T7250, 2000 MHz
    Motherboard
    Acer Extensa 5630
    Memory
    4GB
    Graphics Card(s)
    Mobile Intel(R) GMA 4500M (Mobile 4 series)
    Sound Card
    Realtek ALC268 @ Intel 82801IB ICH9 - High Definition Audio Controller
    Monitor(s) Displays
    1
    Screen Resolution
    1280x800
    Hard Drives
    Samsung SSD 850 EVO 250GB SATA Device (250 GB, SATA-III)
    Internet Speed
    VDSL 50 Mbps
    Browser
    MICROSOFT EDGE
    Antivirus
    WINDOWS DEFENDER
    Other Info
    Legacy MBR installation, no TPM, no Secure Boot, no WDDM 2.0 graphics drivers, cannot get more unsupported ;) This is only my test laptop. I had installed Windows 11 here before upgrading my main PC. For my main PC I use everyday see my 2nd system specs.
  • Operating System
    Windows 11 Pro v23H2 (build 22631.3235)
    Computer type
    PC/Desktop
    Manufacturer/Model
    Custom-built PC
    CPU
    Intel Core-i7 3770 3.40GHz s1155 (3rd generation)
    Motherboard
    Asus P8H61 s1155 ATX
    Memory
    2x Kingston Hyper-X Blu 8GB DDR3-1600
    Graphics card(s)
    Gainward NE5105T018G1-1070F (nVidia GeForce GTX 1050Ti 4GB GDDR5)
    Sound Card
    Realtek HD audio (ALC887)
    Monitor(s) Displays
    Sony Bravia KDL-19L4000 19" LCD TV via VGA
    Screen Resolution
    1440x900 32-bit 60Hz
    Hard Drives
    Patriot Burst Elite 480GB SSD as system disk, Western Digital Caviar Purple 4TB SATA III (WD40PURZ) as second
    PSU
    Thermaltake Litepower RGB 550W Full Wired
    Case
    SUPERCASE MIDI-TOWER
    Cooling
    Stock Intel CPU Fan, 1x 8cm fan at the back
    Mouse
    Sunnyline OptiEye PS/2
    Keyboard
    Mitsumi 101-key PS/2
    Internet Speed
    100Mbps
    Browser
    Microsoft Edge, Mozilla Firefox
    Antivirus
    Microsoft Windows Defender
    Other Info
    Legacy BIOS (MBR) installation, no TPM, no Secure Boot, WDDM 3.0 graphics drivers, WEI score 7.4
I had a chromebook for awhile when I was taking care of my mom. I bought it for the security it offered for my job as I had to do lots of things online, turning in my hours ,banking etc. I probably would have set up Linux if I had the time back then. The chromebook was set up with utf2 for secure logins, and I enjoyed the games I could play. After my mom passed away I moved back to windows full time because I just like it. I have been a windows user since Windows 95. Windows really has come a long way. :)
 

My Computers

System One System Two

  • OS
    Windows11
    Computer type
    Laptop
    Manufacturer/Model
    Huawei Matebook X Pro
    CPU
    intel 8250 I5
    Memory
    8gb
    Graphics Card(s)
    intel uhd 620
    Monitor(s) Displays
    built in laptop display
    Screen Resolution
    1920x1280
    Hard Drives
    Samsung 970 Evo 500gb M2
    Browser
    Edge
    Antivirus
    Defender
  • Operating System
    Windows 10
    Computer type
    Laptop
    Manufacturer/Model
    Acer A515-43-R6DE
    CPU
    AMD Ryzen 7300U
    Memory
    16 GB DDR4
    Graphics card(s)
    AMD Raedon RX Vega graphics onboard
    Monitor(s) Displays
    15"6 FHD IPS Slim Bezel
    Hard Drives
    512cb PCie NVME SSD
    Case
    Pure Silver
    Mouse
    Touchpad and Logitech external mouse
    Keyboard
    Inbuilt
    Browser
    Edge
    Antivirus
    Defender
Hi,
TPm is the puzzling one that's required not secure boot.
 

My Computer

System One

  • OS
    Win-7-10-11Pro's
    Computer type
    PC/Desktop
    Manufacturer/Model
    Acer 17" Nitro 7840sn/ 2x16gb 5600c40/ 4060/ stock 1tb-os/ 4tb sn850x
    CPU
    10900k & 9940x & 5930k
    Motherboard
    z490-Apex & x299-Apex & x99-Sabertooth
    Memory
    Trident-Z Royal 4000c16 2x16gb & Trident-Z 3600c16 4x8gb & 3200c14 4x8gb
    Graphics Card(s)
    Titan Xp & 1080ti FTW3 & evga 980ti gaming
    Sound Card
    Onboard Realtek x3
    Monitor(s) Displays
    1-AOC G2460PG 24"G-Sync 144Hz/ 2nd 1-ASUS VG248QE 24"/ 3rd LG 43" series
    Screen Resolution
    1920-1080 not sure what the t.v is besides 43" class scales from 1920-1080 perfectly
    Hard Drives
    2-WD-sn850x 4tb/ 970evo+500gb/ 980 pro 2tb.
    PSU
    1000p2 & 1200p2 & 850p2
    Case
    D450 x2 & 1 Test bench in cherry Entertainment center
    Cooling
    Custom water loops x3 with 2x mora 360mm rads only 980ti gaming air cooled
    Keyboard
    G710+x3
    Mouse
    Redragon x3
    Internet Speed
    xfinity gigabyte
    Browser
    Firefox
    Antivirus
    mbam pro
Yes that is true. I really do not know a real lot about the TPM. I found this in an article about TPM. The TPM does further secure your computer.

"TPM is used mostly for encryption, and it will generate and store parts of the encryption keys. This means that if you want to unlock an encrypted drive, you’ll need to use the same TPM chip that generated the encryption key.

Since the encryption key isn’t stored on your drive, it’s harder for hackers to decrypt your data since they need access to the TPM chip as well.

TPM chips also have tamper protection, and in case the chip or motherboard is tampered with by a hacker, the TPM should still be able to keep your data locked.

In addition to encryption, the TPM can protect your PC from bootloader malware by verifying the boot loader. In case your bootloader has been tempered with, TPM will prevent your system from booting.

TPM also has a Quarantine Mode that you can use to fix bootloader issues. Lastly, TPM stores all your passwords inside it, which makes them secure from hackers.

As for other uses, TPM is used for digital rights management, protection of software licenses, and in some cases, as prevention from cheating in video games."

I believe the TPM was first used for the last reason. Digital rights management. But, I am sure you know all of this. Anyway if it makes things more secure then it is O.K. by me.
 

My Computers

System One System Two

  • OS
    Windows11
    Computer type
    Laptop
    Manufacturer/Model
    Huawei Matebook X Pro
    CPU
    intel 8250 I5
    Memory
    8gb
    Graphics Card(s)
    intel uhd 620
    Monitor(s) Displays
    built in laptop display
    Screen Resolution
    1920x1280
    Hard Drives
    Samsung 970 Evo 500gb M2
    Browser
    Edge
    Antivirus
    Defender
  • Operating System
    Windows 10
    Computer type
    Laptop
    Manufacturer/Model
    Acer A515-43-R6DE
    CPU
    AMD Ryzen 7300U
    Memory
    16 GB DDR4
    Graphics card(s)
    AMD Raedon RX Vega graphics onboard
    Monitor(s) Displays
    15"6 FHD IPS Slim Bezel
    Hard Drives
    512cb PCie NVME SSD
    Case
    Pure Silver
    Mouse
    Touchpad and Logitech external mouse
    Keyboard
    Inbuilt
    Browser
    Edge
    Antivirus
    Defender
Hi,
Yeah that's why tpm is puzzling seeing people have been using flash drive to store bitlocker keys for a long time.
 

My Computer

System One

  • OS
    Win-7-10-11Pro's
    Computer type
    PC/Desktop
    Manufacturer/Model
    Acer 17" Nitro 7840sn/ 2x16gb 5600c40/ 4060/ stock 1tb-os/ 4tb sn850x
    CPU
    10900k & 9940x & 5930k
    Motherboard
    z490-Apex & x299-Apex & x99-Sabertooth
    Memory
    Trident-Z Royal 4000c16 2x16gb & Trident-Z 3600c16 4x8gb & 3200c14 4x8gb
    Graphics Card(s)
    Titan Xp & 1080ti FTW3 & evga 980ti gaming
    Sound Card
    Onboard Realtek x3
    Monitor(s) Displays
    1-AOC G2460PG 24"G-Sync 144Hz/ 2nd 1-ASUS VG248QE 24"/ 3rd LG 43" series
    Screen Resolution
    1920-1080 not sure what the t.v is besides 43" class scales from 1920-1080 perfectly
    Hard Drives
    2-WD-sn850x 4tb/ 970evo+500gb/ 980 pro 2tb.
    PSU
    1000p2 & 1200p2 & 850p2
    Case
    D450 x2 & 1 Test bench in cherry Entertainment center
    Cooling
    Custom water loops x3 with 2x mora 360mm rads only 980ti gaming air cooled
    Keyboard
    G710+x3
    Mouse
    Redragon x3
    Internet Speed
    xfinity gigabyte
    Browser
    Firefox
    Antivirus
    mbam pro
This only proves TPM is useless for the average user. Who encrypts his data on a home computer? Very few, even fewer have a clue how to do it. So the average user doesn't use the much advertised security features of Windows 11, TPM and Secure Boot. And this proves my statement that Microsoft introduced these requirements to push us upgrade our computers, not because of the extra security they provide, as virtually no average user uses them.
 

My Computers

System One System Two

  • OS
    Windows 11 Pro 23H2 64-bit (build 22631.3235)
    Computer type
    Laptop
    Manufacturer/Model
    Acer Extensa 5630EZ
    CPU
    Mobile DualCore Intel Core 2 Duo T7250, 2000 MHz
    Motherboard
    Acer Extensa 5630
    Memory
    4GB
    Graphics Card(s)
    Mobile Intel(R) GMA 4500M (Mobile 4 series)
    Sound Card
    Realtek ALC268 @ Intel 82801IB ICH9 - High Definition Audio Controller
    Monitor(s) Displays
    1
    Screen Resolution
    1280x800
    Hard Drives
    Samsung SSD 850 EVO 250GB SATA Device (250 GB, SATA-III)
    Internet Speed
    VDSL 50 Mbps
    Browser
    MICROSOFT EDGE
    Antivirus
    WINDOWS DEFENDER
    Other Info
    Legacy MBR installation, no TPM, no Secure Boot, no WDDM 2.0 graphics drivers, cannot get more unsupported ;) This is only my test laptop. I had installed Windows 11 here before upgrading my main PC. For my main PC I use everyday see my 2nd system specs.
  • Operating System
    Windows 11 Pro v23H2 (build 22631.3235)
    Computer type
    PC/Desktop
    Manufacturer/Model
    Custom-built PC
    CPU
    Intel Core-i7 3770 3.40GHz s1155 (3rd generation)
    Motherboard
    Asus P8H61 s1155 ATX
    Memory
    2x Kingston Hyper-X Blu 8GB DDR3-1600
    Graphics card(s)
    Gainward NE5105T018G1-1070F (nVidia GeForce GTX 1050Ti 4GB GDDR5)
    Sound Card
    Realtek HD audio (ALC887)
    Monitor(s) Displays
    Sony Bravia KDL-19L4000 19" LCD TV via VGA
    Screen Resolution
    1440x900 32-bit 60Hz
    Hard Drives
    Patriot Burst Elite 480GB SSD as system disk, Western Digital Caviar Purple 4TB SATA III (WD40PURZ) as second
    PSU
    Thermaltake Litepower RGB 550W Full Wired
    Case
    SUPERCASE MIDI-TOWER
    Cooling
    Stock Intel CPU Fan, 1x 8cm fan at the back
    Mouse
    Sunnyline OptiEye PS/2
    Keyboard
    Mitsumi 101-key PS/2
    Internet Speed
    100Mbps
    Browser
    Microsoft Edge, Mozilla Firefox
    Antivirus
    Microsoft Windows Defender
    Other Info
    Legacy BIOS (MBR) installation, no TPM, no Secure Boot, WDDM 3.0 graphics drivers, WEI score 7.4
Hi,
Yep MS lab testing tpm/.... this is what they can up with to idiot proof the os lol
 

My Computer

System One

  • OS
    Win-7-10-11Pro's
    Computer type
    PC/Desktop
    Manufacturer/Model
    Acer 17" Nitro 7840sn/ 2x16gb 5600c40/ 4060/ stock 1tb-os/ 4tb sn850x
    CPU
    10900k & 9940x & 5930k
    Motherboard
    z490-Apex & x299-Apex & x99-Sabertooth
    Memory
    Trident-Z Royal 4000c16 2x16gb & Trident-Z 3600c16 4x8gb & 3200c14 4x8gb
    Graphics Card(s)
    Titan Xp & 1080ti FTW3 & evga 980ti gaming
    Sound Card
    Onboard Realtek x3
    Monitor(s) Displays
    1-AOC G2460PG 24"G-Sync 144Hz/ 2nd 1-ASUS VG248QE 24"/ 3rd LG 43" series
    Screen Resolution
    1920-1080 not sure what the t.v is besides 43" class scales from 1920-1080 perfectly
    Hard Drives
    2-WD-sn850x 4tb/ 970evo+500gb/ 980 pro 2tb.
    PSU
    1000p2 & 1200p2 & 850p2
    Case
    D450 x2 & 1 Test bench in cherry Entertainment center
    Cooling
    Custom water loops x3 with 2x mora 360mm rads only 980ti gaming air cooled
    Keyboard
    G710+x3
    Mouse
    Redragon x3
    Internet Speed
    xfinity gigabyte
    Browser
    Firefox
    Antivirus
    mbam pro
TPM is also used to identify specific computer systems. For example, Apple uses that to prevent the installation of Mac OS X to non-Apple hardware. The installer detects specific data in the TPM to verify it is an Apple system. Hackintosh (non-Apple computers running Mac OS X) have to fake TPM and other features to install and run Mac OS X.
 

My Computers

System One System Two

  • OS
    Windows 11 Pro 23H2 64-bit (build 22631.3235)
    Computer type
    Laptop
    Manufacturer/Model
    Acer Extensa 5630EZ
    CPU
    Mobile DualCore Intel Core 2 Duo T7250, 2000 MHz
    Motherboard
    Acer Extensa 5630
    Memory
    4GB
    Graphics Card(s)
    Mobile Intel(R) GMA 4500M (Mobile 4 series)
    Sound Card
    Realtek ALC268 @ Intel 82801IB ICH9 - High Definition Audio Controller
    Monitor(s) Displays
    1
    Screen Resolution
    1280x800
    Hard Drives
    Samsung SSD 850 EVO 250GB SATA Device (250 GB, SATA-III)
    Internet Speed
    VDSL 50 Mbps
    Browser
    MICROSOFT EDGE
    Antivirus
    WINDOWS DEFENDER
    Other Info
    Legacy MBR installation, no TPM, no Secure Boot, no WDDM 2.0 graphics drivers, cannot get more unsupported ;) This is only my test laptop. I had installed Windows 11 here before upgrading my main PC. For my main PC I use everyday see my 2nd system specs.
  • Operating System
    Windows 11 Pro v23H2 (build 22631.3235)
    Computer type
    PC/Desktop
    Manufacturer/Model
    Custom-built PC
    CPU
    Intel Core-i7 3770 3.40GHz s1155 (3rd generation)
    Motherboard
    Asus P8H61 s1155 ATX
    Memory
    2x Kingston Hyper-X Blu 8GB DDR3-1600
    Graphics card(s)
    Gainward NE5105T018G1-1070F (nVidia GeForce GTX 1050Ti 4GB GDDR5)
    Sound Card
    Realtek HD audio (ALC887)
    Monitor(s) Displays
    Sony Bravia KDL-19L4000 19" LCD TV via VGA
    Screen Resolution
    1440x900 32-bit 60Hz
    Hard Drives
    Patriot Burst Elite 480GB SSD as system disk, Western Digital Caviar Purple 4TB SATA III (WD40PURZ) as second
    PSU
    Thermaltake Litepower RGB 550W Full Wired
    Case
    SUPERCASE MIDI-TOWER
    Cooling
    Stock Intel CPU Fan, 1x 8cm fan at the back
    Mouse
    Sunnyline OptiEye PS/2
    Keyboard
    Mitsumi 101-key PS/2
    Internet Speed
    100Mbps
    Browser
    Microsoft Edge, Mozilla Firefox
    Antivirus
    Microsoft Windows Defender
    Other Info
    Legacy BIOS (MBR) installation, no TPM, no Secure Boot, WDDM 3.0 graphics drivers, WEI score 7.4

Latest Support Threads

Back
Top Bottom