Month: May 2025

Posted on

What is TPM2 and why Windows 11 requires it

With Windows 10 support ending in <5 months, I thought I’d talk a little about what Trusted Platform Module (TPM) is, its role in Windows 11, and how it fits into Microsoft’s Chip-to-Cloud security strategy, along with an explanation of Microsoft’s own Pluton processors.

Why. Well, before Microsoft released TPM and made it a mandatory system requirement, few people paid attention to it but now I get asked more and more “what is TPM”. So here we go….

Introduction

Security in computing has never been more critical. As cyber threats evolve, Microsoft continues to adapt it’s proactive approach to securing Windows devices from the ground up. This is where Trusted Platform Module (TPM) and Pluton processors come into play, forming key components of Microsoft’s Chip-to-Cloud security strategy.

TPM 2.0 is the latest version of TPM, the previous version being TPM 1.2

What is TPM?

TPM is a hardware-based security module designed to protect sensitive data, such as encryption keys, credentials, and system integrity measurements.

Trusted Platform Module (TPM, also known as ISO/IEC 11889) is an international standard for a secure cryptoprocessor, a dedicated microcontroller designed to secure hardware through integrated cryptographic keys. The term can also refer to a chip conforming to the standard.

It acts as a root of trust, ensuring that a device boots securely and remains protected against unauthorised access.

Why is TPM Required for Windows 11

Microsoft made TPM 2.0 a requirement for Windows 11 to enhance security across all devices.

Today, we are announcing Windows 11 to raise security baselines with new hardware security requirements built-in that will give our customers the confidence that they are even more protected from the chip to the cloud on certified devices.

David Weston, Director of Enterprise and OS Security @ Microsoft

Here’s why it’s needed.

BitLocker encryption in Windows 11 (and earlier versions) enhances security by storing encryption keys in the Trusted Platform Module (TPM). When a user accesses their computer, these keys unlock the drive, ensuring seamless protection. Without the keys stored in TPM, attackers cannot decrypt the drive—such as the system drive—nor can they access the files on it.

TPM is needed because it provides and enforces:

  • Hardware-Based Protection: Unlike software-only security solutions, TPM is embedded in the hardware, making it resistant to malware and physical attacks.
  • Secure Boot & System Integrity: TPM ensures that the operating system loads securely, preventing unauthorized modifications.
  • Encryption & Authentication: Features like BitLocker and Windows Hello rely on TPM to securely store encryption keys and biometric data.
  • Defending Against Emerging Threats: With attackers increasingly targeting firmware and hardware vulnerabilities, TPM provides a trusted execution environmentthat mitigates these risks.

Microsoft’s Chip-to-Cloud Security Strategy

Microsoft’s Chip-to-Cloud approach is designed to integrate security at every level, from the silicon inside a device to cloud-based protections. TPM plays a crucial role in this strategy by ensuring that security starts at the hardware level.

Where does Pluton Fit in?

Pluton is Microsoft’s next-generation security processor, built directly into the CPU (known as System on Chip). Unlike traditional TPMs, which are separate chips, Pluton is integrated within the processor, making it even more resistant to attacks.

How Pluton Enhances Security

  • Eliminates Physical Attacks: Since Pluton is embedded within the CPU, attackers cannot extract sensitive data by physically removing or tampering with a separate TPM chip.
  • Continuous Security Updates**: Pluton receives firmware updates directly from Microsoft via Windows Update, ensuring devices remain protected against evolving threats.
  • Improved Cryptographic Security: Pluton enhances encryption capabilities, making it harder for attackers to compromise sensitive data.

Is Pluton part of TPM then?

Yes, Pluton can function as a TPM. It supports TPM 2.0 standards, meaning Windows features like BitLocker, Windows Hello, and System Guard can leverage Pluton for security.

Pluton also goes beyond TPM, offering additional security features that traditional TPMs cannot.

Pluton acts as the TPM in the new Surface Laptop and Pro released this month.

Conclusion

Microsoft’s Chip-to-Cloud security strategy ensures that Windows devices are protected at every level. TPM 2.0 provides a trusted foundation while Pluton takes security to the next level by integrating protection directly into the CPU. As cyber threats continue to evolve, these technologies will play a crucial role in safeguarding Windows devices.

Further Reading

Microsoft Pluton security processor https://learn.microsoft.com/en-us/windows/security/hardware-security/pluton/microsoft-pluton-security-processor


Microsoft Pluton as Trusted Platform Module https://learn.microsoft.com/en-us/windows/security/hardware-security/pluton/pluton-as-tpm

Posted on

Windows 365 now 20% cheaper until October 2025

With support for Windows 10 ending on 14th October 2025, Microsoft has introduced a strategic initiative aimed at easing the transition to modern computing environments and to encourage more oganisations to take a look at Windows 365.

They are offering a 20% off for any “new to Windows 365” business customers making it a great time to discover and test drive Windows 365.

What Is Windows 365?

Windows 365 is a 100% cloud-based service that streams a complete and dedicated Windows 11 operating system from the the Microsoft cloud to any device. In doing so, it this offers a modern and simple blend of mobility, security, and productivity. Being a cloud service (think Xbox Gaming) it can work on any internet connected device through a browser or Windows App. There is also a purpose-built Windows 365 Link Device which start shipping this month.

Use Cases for Windows 365

Whether you have contractors, temp staff, support bring your own device or just need to support remote workers better, Windows 365 is a simple, secure and flexible solution that adapts to your environment, your employees and your environment.

Windows 365 can work alongside an existing managed desktop and the subscription also includes Windows 10 Extended Support Updates, meaning if you use it from a Windows 10 device, you are secure and protected whilst you adopt Windows 365 or manage your transition from Windows 10 devices to more modern devices running Windows 11, like the new Surface Pro and Laptops released this week.

Windows 365 ensures that employees have access to a personalised, dedicated Windows desktop, apps, settings, and data with a single and secure login without compromise.

Why the discount counts!

Microsoft’s decision to offer a 20% discount on all Windows 365 subscriptions for first-time customers is a proactive measure to help businesses and individual users make a smooth transition ahead of Windows 10’s end of support. Here’s why the discount is a key opportunity:

  • Cost Efficiency: The discount provides immediate savings on subscription fees, making the switch to a cloud-based solution more budget-friendly. 
  • Enhanced Security: Leaving behind legacy Windows 10 systems means benefiting from next-generation security features built right into Windows 11 and Windows 365.
  • Modern Computing on Any Device: Many businesses face hardware challenges—especially with older systems that do not meet the specification or security requirements of Windows 11 . Windows 365 sidesteps this by delivering a full-featured Windows experience through the cloud whilst providing Windows 10 ESU for the base devices to keep you secure and protected.
  • Seamless Integration: Windows 365 is designed and tested to work effortlessly with your Windows applications and services including Copilot, Microsoft Teams, OneDrive, and other Office apps, Windows 365 ensures a cohesive ecosystem that boosts productivity and collaboration.
  • Flexibility: Windows 365 offers different SKUs for Small Business, Front Line Workers, and Enterprise and comes in different configuration specifications which can be scaled up and down as needed.

Who Can Benefit?

The 20% discount is available exclusively for first-time Windows 365 customers. It is valid for either the duration of the customer’s Enterprise Agreement contract or, for the first year of a CSP subscription.

Transitioning in the Shadow of Windows 10 End of Support

As Microsoft officially phases out support for Windows 10 in October 2025, many organizations are confronted with a pivotal decision: upgrade to newer, more secure systems or continue risking vulnerabilities on an aging operating system. Windows 365 emerges as a robust, cost-effective alternative that not only mitigates these risks but also propels organizations into a more agile and modern operational paradigm. This timely discount is a clarion call to innovate, modernize, and make a daring leap into the future of hybrid computing.

Speak to Cisilion Today

Now is the perfect moment to embrace change and take Windows 365 for a test drive. We can provide guidance, licensing, support, deployment and adoption support to help you transition or pilot Windows 365 and answer any questions you have.

The promotional SKU ends on October 31, 2025,

Posted on

New Surface Copilot+PC devices announced

Microsoft has today announced new (smaller) Copilot+ PC Surface Pro and Laptop 13″ which amongst other things provide a more cost effective Windows-powered alternative to the Apple iPad Pro 11-inch which is also due to launch this week.

These devices focus on hypermobility, versatility, and durability as key user priorities based on extensive user feedback and end user device surveys and studies.

These new devices include a “more portable” 13-inch Surface Laptop and a 12-inch Surface Pro, both of which are smaller/lower-spec versions of Microsoft’s flagship Laptop and Pro.

Both are Copilot+PCs though and powered by an eight-core Snapdragon X Plus processor with an NPU rated at 45 trillion AI operations per second (TOPS).

New Surface Laptop (Left) and Pro (Right)

Both come with a base config of 16GB of RAM (the minimum required for a Copilot+ PC), 256GB or 512GB of UFS storage. They come in three colours, Platinum, Ocean and Violet, and Platinum.

Release date for orders is May 20, 2025, and pricing starts at $899.99 for Laptop and $799.99 for the Pro. Pre-orders are available now from Microsoft and major resellers and these will start shipping to consumers later this month and for Business customers in July.

These devices form part of Microsoft’s continuing efforts to really make their devices and experiences more accessible to more people bringing smaller, seeker devices along with much lower price points when compared to the larger Surface Laptop and Pro range without sacrificing on power, performance, and AI capability.

This latest update to the Surface line up is part of their new Copilot+ PC family, designed to handle the latest AI workloads that are flooding the market including Microsoft own Windows 11 inbox tools including Click-to-Do and Recall.

Different look and feel

These new devices sit in the middle of the Flagship Pro and Laptop and the Go range. They look sleeker and more modern too with rounder edges and softer sides. This means they will also feel like different devices but retain that premium Surface familiarity and build quality.

You will note from naming structure that these devices also fall in line to be part of the Pro and Laptop but at their very core show Microsoft’s initial take what it means to be a Copilot+ PC.

These are also the first Surface devices not to ship with the Surface Connect Port which has been a stable for Surface since the Surface Pro 4. Instead these now support USB-C PD chargers something Microsoft (along with many others) are shifting to from a standardisation, and sustainability perspective.

New Surface Pro 12″

The new Surface Pro is a hybrid 2-in-1 as you’d expect with the usual gorgeous adjustable kickstand, offering a smaller alternative to the current 13-inch Surface Pro 11th Edition.

To keep the price down, this new 12″ version comes with the 8-core Snap-Dragon Plus processor (rather than the 10 or 12 core version), the touchscreen has a lower refresh rate, resolution, and contrast ratio compared to the flagship versions.

There’s also a new Surface Pro 12-inch Keyboard which is needed to turn Pro into a laptop, while the (also optional) Surface Slim Pen 2 enables the user to take notes on draw its display. Taking innovation from the Surface Laptop Studio, Slim Pen can now magnetically attach to the back of the new Surface Pro for safekeeping. Despite its compact footprint, it includes a full-size keyboard with backlit keys and a customizable touchpad

Where this device excels however is in battery life, with this being rated for 16 hours of local video playback per charge.

There is no compromise on connectivity, with 2x USB-C  and a USB-A too. You also get Wi-Fi-7, and Bluetooth 5.4.

Size wise, this 12-inch Surface Pro measures 10.8 x 7.47 x 0.3 inches and weighs just 1.5 pounds, making it “the thinnest and lightest Copilot+ PC yet“.

New Surface Laptop

The new 13″ Surface Laptop, like the smaller Pro, features a downgraded 60Hz touchscreen display with lower resolution and contrast ratio and is powered by the 8-core Snap-Dragon Plus CPUs. Battery power is where this really shines with a 23 hours (rated) of local video playback per charge, compared to the Surface Laptop 7’s 20 hours.

There’s also no compromise on connectivity, with 2x USB-C  and a USB-A too. You also get Wi-Fi-7, and Bluetooth 5.4.

Dimension wide, the new Surface Laptop measures 11.25 x 8.43 x 0.61 inches and weights 2.7 pounds – making it the “thinnest and lightest Surface Laptop yet” according to Microsoft.

Go or No Go?

The launch of the 13-inch Surface Laptop and 12″ Surface Pro, seems to signal the end of Microsoft’s “Go line”, and also confirms Microsoft’s commitment Windows on ARM over Intel x86-based processors. The most recent Surface Laptop Go 3, a 12.4-inch model, was powered by a 12th-gen Intel Core CPU.

Leveraging ARM based chipsets still provide the best power/performace/battery life ratios and by debuting with these again sets the differentiator and gold standard for what a Microsoft expect other Windows OEMs to follow up with.

The most sustainable and repairable Surface devices ever

Surface continues to deliver sustainability advancements. According to the Microsoft blog, the new Surface Laptop contains 100% recycled cobalt in the battery cell and 100% recycled rare earth metals in the magnets.

Microsoft has also redesigned internal components for easier access and replacement, extending the potential lifespan of these devices.

Many components can be replaced by authorised service providers or skilled technicians — supporting a more repairable, circular approach to device design.

Standardising the Copilot+PC experience

With these new devices, it means that all new Surface devices can now provide the same amount of NPU processing power (TOPS) across the fleet across-the-board meaning a great Copilot+ PC experiences.

It also means it enables all the latest native AI experiences in Windows 11, including Recall, Click-to-Do, as Microsoft continue to push the boundary of  what it means to have a Copilot+ PC.

Final thoughts.

Microsoft’s original vision of “a computer in every home and on every desk” has evolved alongside the ever-changing landscape of computing. Today’s Microsoft knows that devices need to prioritise adaptability multi modal input and mobility, tailoring themselves to individual workflows rather than enforcing standardised interaction models.

Posted on

Star Wars Day & AI: A New Hope for the Digital Age

Every May 4th, us starwars fan unite under the rallying cry, “May the 4th be with you!”.

Just as the ‘real 1st episode’ A New Hope sparked an adventure in a galaxy far, far away, so too is the pace and rapid evolution of AI that is now lighting the path in modern workspaces, business and how we get work done.

Today, and with the help of Copilot, I am not just talking tech—but diving into the human side of transformation with a blend of Starwars and AI, with tools like Microsoft Copilot leading the charge in millions of global organisations, as they discovering that the secret to success isn’t solely technology, but the people-led change that makes innovation stick.

A New Hope: AI’s Journey into the Mainstream

Much like Luke Skywalker’s journey from an uncertain beginning to becoming a beacon of hope, AI is emerging as our modern-day savior in the digital realm.

Just like the journey to becoming a Jedi, this isn’t just about picking up a light sabre or Copilot license and doing a quick bit of training; today’s transformative breakthroughs with AI require a holistic approach that combines practice, perseverance and some adoption and change management to stop you giving in!

When companies deploy Microsoft Copilot across Microsoft 365, they aren’t just rolling out a new features. They’re empowering teams to rethink how they create content, analyse data, and communicate with one another. That’s the real new hope—a future where technology and human creativity merge to spark innovation.

This is where the force is strong!

Harnessing the Force: Microsoft Copilot in Action

Imagine having a droid by your side to help you through your day. Microsoft Copilot does just that: 

  • In Word: Copilot can generate a first draft of a document of your “attack the death star plans” based on a simple Jedi prompt. Whether you’re drafting a report or brainstorming creative ideas on how to defeat Lord Vadar, it can even transform unstructured text into neat tables or summarize long essays, letting you focus on the big picture. 
  • In Excel: Think of it like having a protocol droid like C3PO, who crunches numbers at light speed. Copilot can analyse your attack   data, automate complex calculations, and even forecast trends. It transforms raw data into actionable insights, making financial forecasting and data cleaning as effortless as asking for directions on Tatooine. 
  • In PowerPoint: Need sleek, engaging slides about the new SnowSpeeder? Copilot can help create a visual narrative that captures the essence of your story—from selecting design elements to generating concise content—much like a hologram of Leia offering inspiration for your next pitch. 
  • In Outlook and Teams: Whether it’s summarising battle plans you have had over email or chat, drafting quick replies, or recapping Jedi Council meetings with key action points, Copilot enables swift communication. It acts like the trusty astromech droid R2-D2, ensuring you never miss a beat in your day-to-day operations.. Don’t worry…you get language translation from droid to English too!
  • Agents: just like out faithful droids, Copilot Agents allow orders to be followed but giving specific rules and actions for Copilot to follow using the data we provide. Agents can even tap into to rich data sources and access those death star plans or layout of the death star.

These real-world examples illustrate how Microsoft Copilot isn’t just a tool—it’s a strategic partner fueling change, much like the Rebel Alliance mobilizing for a brighter future.

Lessons from a Galaxy Far, Far Away

The original Star Wars movie A New Hope reminds us that no single hero can change the universe alone. It was the collaboration, strategy, and shared dream of the Rebel Alliance that led to victory.

Similarly, successful AI adoption is not solely about implementing state-of-the-art tech. It’s about embracing a culture founded on continuous learning and empowerment. Change consultants, much like wise mentors in the series, guide organisations through the evolving landscape of AI—not by delivering quick fixes, but by integrating these tools into the fabric of everyday work.

Celebrating Star Wars Day in the Age of AI

On this Star Wars Day, as you sip a Blue Milk latte or a cup of your favorite smokey brew from a bar on Tatooine, take a moment to appreciate the parallel between the cinematic journey of hope and the exciting progress AI is having in our daily lives and work.

Whether you’re a die-hard fan or an AI enthusiast, there are parallels of R2D2 and C3PO and  Microsoft Copilot as your digital side kicks. Remember… It’s not about replacing humans, but about enhancing our potential with the help and assistance of technology —giving us the space to be more creative, proactive, and engaged.

As we continue to harness AI, we’re also setting the stage for a new era of innovation where every tool, every strategy, and every individual plays a key part.

As technology evolves and our worlds where AI and humans will walk together converge, remember that every great journey begins with a single step and a single spark of hope.

This Star Wars Day, let’s celebrate not only legendary heroes of the past but also the brave new frontier of AI, where every one of us can become a part of the story. May the AI be with you, always!

Proudly powered by WordPress