- Apr 24, 2016
Microsoft's attempt to put its homegrown Pluton security processor architecture into third-party Windows 11 PCs is right now more work-in-progress than the slam dunk its publicity would have you believe.
Pluton is the software giant's move to define a level of security that should be baked into microprocessors that run its Windows OS. Pluton implementations are supposed to securely store and safeguard encryption keys, credentials, and other sensitive information, such as biometric data, within the processor package, making it difficult for miscreants to extract this info.
Microsoft announced Pluton in November 2020 in conjunction with Intel, Qualcomm, and AMD; the trio's chips were expected to implement Pluton as an embedded co-processor. Indeed, all three were publicly very excited about the whole affair. However, despite all that publicity and hype, reality isn't quite in alignment.
Intel isn't putting Pluton in its newest PC microprocessors, its 12th-generation Core family code-named Alder Lake, which started appearing in laptops this month.
"Intel's 12th Gen platforms do not support Pluton," an Intel spokesman told The Register this week.
Instead, the semiconductor manufacturer is offering its own suite of security defenses within Alder Lake, a technology dubbed Platform Trust Technology. This provides a Trusted Platform Module 2.0, which is a prerequisite for Windows 11 PCs, meaning the OS will run as normal.
Intel told us PTT has been tested in billions of devices already. That's because Intel has shipped chipsets with PTT for years as a way of bringing TPM-level capabilities to systems. Intel dominates the x86 PC market, where it has a 74 per cent market share, while AMD has 26 per cent.
A Microsoft spokesperson told The Register Pluton was developed with processor makers with a long-term vision to improve security all the way down to the chipset level. As such, it will take time for Pluton to show up in silicon, we're told. Which is understandable given the timescales involved in developing and fabricating state-of-the-art microprocessors, though people may not have had that impression from Pluton's launch.
"As with any novel hardware technology, adoption is based on roadmap, supply chain, and unique customer needs so implementation takes time – similar to adoption of USB 4, TPM 2.0, etc," the Microsoft spokesperson said in an email.
Apple has also integrated its own security chip called T2 in Macs, while Google is using its Titan security silicon in its Pixel devices.
Microsoft is instead relying on the ecosystem and its partners to drive adoption. The intent of Pluton was to provide choice to customers, and it can be offered with or without a third-party TPM 2.0 chip, the Microsoft spokesperson said.
"As the threat landscape continues to evolve, this integration of hardware and software enables the ecosystem to update and dynamically add new security capabilities to hardware through Windows Update," the spokesperson said.