Update your security processor (TPM) firmware

Applies to: SecurityWindows 10Windows Defender for Windows 10

If you receive a message in Windows Security telling you that you need to update your security processor or TPM firmware, the instructions in this topic will show you how.

Why am I receiving this message?

Many devices that run Windows 10 have Trusted Platform Module (TPM) chipsets. A security vulnerability exists in certain TPM chipsets that can impact operating system security, which means Windows 10 operating systems are at increased risk. You are receiving this message because Microsoft is releasing Windows 10 security updates to address the vulnerability which you will need to download and install. In addition, device manufacturers are releasing firmware updates to remediate the problem which you also need to download and install. Finally, once you have installed these updates, you will also need to clear your TPM.

Recommended actions

The following recommended actions contain all the information you need to update your device.

1. First, download and install the Windows operating system updates from Windows Update

If you have turned on automatic updates in Windows Update, you won’t need to take any action because the updates will be downloaded and installed automatically.

If you have not turned on automatic updates, Microsoft recommends that you go to Windows Update immediately to check for updates and install the applicable updates manually. To learn more, see Windows Update: FAQ.


2. Install any applicable firmware updates

If you have a Surface device, please see Microsoft Knowledge Base Article 4073006 for additional information and instructions.

If your device is not from Microsoft, locate the manufacturer of your device in the following table, select the corresponding link, and apply the firmware update they provide. If the manufacturer of your device is not listed in the following table, please contact the manufacturer’s customer support department for next steps.

Device manufacturer Link for firmware update
TPM manufacturer https://www.infineon.com/TPM-update
Acer https://us.answers.acer.com/app/answers/detail/a_id/51137
Fujitsu https://www.fujitsu.com/global/support/products/software/security/products-f/ifsa-201701e.html
HP Customer Support https://support.hp.com/document/c05792935
HP Enterprise Support https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf03789en_us
Lenovo https://support.lenovo.com/product_security/LEN-15552
Panasonic https://pc-dl.panasonic.co.jp/itn/info/osinfo20171026.html
Toshiba http://go.toshiba.com/tpmsecuritynotice


3. Clear your TPM

Follow these steps to clear your TPM:

  1. Go to Start  > Settings  > Update & Security  > Windows Security > Device security .
  2. Under Security processor, select Security processor details.
  3. Select Security processor troubleshooting, and then under Clear TPM, select Clear TPM.

    Your device will need to restart before the process is complete.