Trusted Platform Module support Trusted Platform Module (TPM) 2.0 provides platform authentication support for Windows 8 and above UEFI systems, without the need for Pre-Boot Authentication (PBA). TPM is a platform that allows encryption to occur using keys within the TPM. TPM is also implemented in firmware for tablets. Drive Encryption supports TPM 2.0 and TPM 1.2 on Windows 8 and above UEFI systems for the TPM autoboot and cold-boot protection features. Use of TPM for automatic bootingThe existing automatic booting feature creates a copy of the system's encryption key as a plain-text file in the Pre-Boot File System. With the TPM autoboot feature, Drive Encryption uses TPM to encrypt this file. Protection of systems in Windows lock, log off, and standby states In a world where more and more systems stay switched on but in low-power states (Always-On Always-Connect - AOAC), Drive Encryption 7.2 provides an additional level of protection for these systems, and extended the protection to protect systems where the user has locked the screen or logged off.